Covington to contest SEC court request for breached client data


The Securities and Exchange Commission (SEC) asked a federal court to force Covington & Burling to comply with a subpoena seeking the law firm turn over names of about 300 clients impacted by a 2020 cyberattack.

The SEC announced Jan. 12 it filed an application to the U.S. District Court for the District of Columbia for the court to order Covington to show cause as to why it should not be compelled to comply with the agency’s subpoena, which relates to the Microsoft Hafnium cyberattack.

Microsoft announced in March 2021 some of its programs were vulnerable to hacking and that a China-based group, Hafnium, exploited the weaknesses at government agencies, businesses, and schools globally. On March 16, 2021, the SEC announced it was launching an investigation about the impact of the attack on publicly traded companies.

lock iconTHIS IS MEMBERS-ONLY CONTENT. To continue reading, choose one of the options below.