SolarWinds partial dismissal casts doubt on SEC Cybersecurity Rule
By 
Jeff Dale2024-08-07T14:33:00
A partial dismissal of charges levied by the Securities and Exchange Commission against Solarwinds has cast doubt about the breadth of the SEC's Cybersecurity Rule.
The SEC’s argument that a company’s “system of internal accounting controls” includes cybersecurity controls was “not tenable,” according to U.S. District Court Judge Paul Engelmayer for the Southern District of New York in his opinion and order, signed July 18.
“To state the obvious, cybersecurity controls are not–and could not have been expected to be–part of the apparatus necessary to the production of accurate” financial reports, the ruling stated.
Related articles
-
News BriefU.K. says company boards need to worry more about cybersecurity risks
The U.K. government wants directors and boards of directors to become more actively involved in cybersecurity risks facing public and private companies, as the world faces “alarming” threats from criminal gangs and malicious nation-states. Though many organizations take cybersecurity seriously, the U.K. government says they do not place management of ...
-
OpinionFive reasons why I’m excited about CW’s Cyber Risk & Data Privacy Summit
Having worked for Compliance Week for three years, I’ve found it remarkable how compliance professionals can be so consistently upbeat about their plight. An often refrain in compliance circles is “be comfortable with being uncomfortable.” As difficult as the job can be, that clearly doesn’t mean it can’t be fun.
-
News BriefUnisys, three other firms fined a combined $7M for underplaying damage from SolarWinds hack
Four current or former public companies will pay a total of nearly $7 million in fines to settle charges by the Securities and Exchange Commission that they underplayed or failed to disclose material information about how the SolarWinds Orion hack affected them.
More from Regulatory Enforcement
-
ArticleU.K. extends bullying and harassment rules to 37,000 financial services firms
Serious bullying and harassment count as misconduct in regulated financial services firms, per a July 1 clarification by the U.K. Financial Conduct Authority, which said non-financial misconduct rules now applied only to banks will extend to 37,000 more firms starting September 1, 2026.
-
News BriefDOJ clears $4.4 Billion T‑Mobile acquisition of UScellular
The U.S. Department of Justice arppoved T-Mobile’s acquisition of competitor UScellular. The move came a day after T-Mobile announced it had dropped its diversity, equity, and inclusion programs, a frequent target for Trump’s administration.
-
News BriefFlorida alleges that Robinhood Crypto’s fee disclosures are inaccurate
The state of Florida is investigating Robinhood Crypto for falsely claiming it charges the lowest fees for processing crypto transactions.