Skip to main content
Skip to navigation

Regulatory Enforcement

Covington to contest SEC court request for breached client data

By Adrianne Appel2023-01-19T13:44:00

The Securities and Exchange Commission (SEC) asked a federal court to force Covington & Burling to comply with a subpoena seeking the law firm turn over names of about 300 clients impacted by a 2020 cyberattack.

The SEC announced Jan. 12 it filed an application to the U.S. District Court for the District of Columbia for the court to order Covington to show cause as to why it should not be compelled to comply with the agency’s subpoena, which relates to the Microsoft Hafnium cyberattack.

Microsoft announced in March 2021 some of its programs were vulnerable to hacking and that a China-based group, Hafnium, exploited the weaknesses at government agencies, businesses, and schools globally. On March 16, 2021, the SEC announced it was launching an investigation about the impact of the attack on publicly traded companies.

THIS IS MEMBERS-ONLY CONTENT

cw-membership

You are not logged in and do not have access to members-only content.

If you are already a registered user or a member, SIGN IN now.

Related articles

Premium
Covington mulling appeal of ruling in SEC breached client case

2023-08-04T18:01:00Z By Adrianne Appel

Covington & Burling is leaving open the possibility of appealing a recent federal court order requiring the law firm to provide the names of hacked clients to the Securities and Exchange Commission.
News Brief
SEC risk alert flags branch office cybersecurity controls

2023-04-27T18:43:00Z By Aaron Nicodemus

The protection of customer personal data by branch offices of broker-dealers and investment advisers should be just as robust—and as well-coordinated—as protocols used by the firm’s home office, according to the Securities and Exchange Commission.
Opinion
What the Copilot Usage Report 2025 Means for Corporate Compliance

2025-12-18T18:48:00Z By Tom Fox

Microsoft’s Copilot Usage Report 2025 offers compliance professionals a rare, data-driven look at how artificial intelligence is actually being used by millions of people, rather than how organizations assume it is being used.

More from Regulatory Enforcement

Article
FTC suit against Uber gains traction with 21 states and DC joining in

2025-12-18T18:28:00Z By Adrianne Appel

The Federal Trade Commission allegations against Uber, alleging deceptive billing and subscription cancellations, have snowballed, with 21 states and the District of Columbia joining the lawsuit.
Article
Top Ethics and Compliance Failures of 2025

2025-12-17T20:09:00Z By Adrianne Appel

The 2025 year has been so rich with compliance stinkers, and rife with poor judgment, compliance missteps, outright malfeasance and greed, greed, greed, that it was almost impossible to choose just six epic compliance failures from this year’s massive poop pile.
Article
FATF focus on criminal asset recovery points to a more investigatory role for compliance

2025-12-11T21:18:00Z By Ruth Prickett

Global organised crime is booming, and only 1 to 2 percent of the $4 trillion black economy is intercepted, according to figures from the Financial Action Task Force. Its new guidance suggests that countries should focus on rapid investigations, collaborative intelligence gathering, and confiscating the proceeds of criminal activity.