SolarWinds partial dismissal casts doubt on SEC Cybersecurity Rule
By 
Jeff Dale2024-08-07T14:33:00
A partial dismissal of charges levied by the Securities and Exchange Commission against Solarwinds has cast doubt about the breadth of the SEC's Cybersecurity Rule.
The SEC’s argument that a company’s “system of internal accounting controls” includes cybersecurity controls was “not tenable,” according to U.S. District Court Judge Paul Engelmayer for the Southern District of New York in his opinion and order, signed July 18.
“To state the obvious, cybersecurity controls are not–and could not have been expected to be–part of the apparatus necessary to the production of accurate” financial reports, the ruling stated.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
News BriefU.K. says company boards need to worry more about cybersecurity risks
The U.K. government wants directors and boards of directors to become more actively involved in cybersecurity risks facing public and private companies, as the world faces “alarming” threats from criminal gangs and malicious nation-states. Though many organizations take cybersecurity seriously, the U.K. government says they do not place management of ...
-
OpinionFive reasons why I’m excited about CW’s Cyber Risk & Data Privacy Summit
Having worked for Compliance Week for three years, I’ve found it remarkable how compliance professionals can be so consistently upbeat about their plight. An often refrain in compliance circles is “be comfortable with being uncomfortable.” As difficult as the job can be, that clearly doesn’t mean it can’t be fun.
-
News BriefUnisys, three other firms fined a combined $7M for underplaying damage from SolarWinds hack
Four current or former public companies will pay a total of nearly $7 million in fines to settle charges by the Securities and Exchange Commission that they underplayed or failed to disclose material information about how the SolarWinds Orion hack affected them.
More from Regulatory Enforcement
-
ArticleEuropean regulators fine banks for compliance failures and warn more investigations will follow
Crédit Agricole and J.P. Morgan were among financial institutions that found themselves in the cross-hairs of the European Central Bank for faulty risk assessments and risk reporting and failing to protect consumers from fraud risks. All of those companies fined also missed compliance deadlines.
-
ArticleFalse Claims Act enforcement themes for 2026
The U.S. Department of Justice touted a record $6.8 billion in False Claims Act (FCA) recoveries in fiscal year 2025, much of that total stems from prior years’ cases and does not necessarily reflect the administration’s current enforcement direction.
-
ArticleFederal jury convicts former coal executive in Egypt-linked coal FCPA case
A former vice president of an American coal company was convicted by a federal jury for his part in an international bribery and money laundering scheme. The conviction represents an anomoly in the Trump administration’s handling of Foreign Corrupt Practices Act (FCPA) cases launched under former President Joe Biden.