The SEC on Oct. 22, 2024, announced charges against four companies for allegedly making materially misleading disclosures concerning the impact of cybersecurity incidents associated with the compromised SolarWinds' Orion...more
10/31/2024
/ Chief Information Security Officer (CISO) ,
Civil Monetary Penalty ,
Corporate Governance ,
Cyber Attacks ,
Cyber Incident Reporting ,
Cybersecurity ,
Disclosure Requirements ,
Enforcement Actions ,
Form 8-K ,
Material Misrepresentation ,
Misleading Statements ,
Publicly-Traded Companies ,
Securities and Exchange Commission (SEC) ,
Securities Exchange Act ,
Software ,
SolarWinds
This Holland & Knight blog post is the second installment in a two-part series that examines the challenges to the U.S. Securities and Exchange Commission's (SEC) charges in its landmark case against SolarWinds Corp....more
7/29/2024
/ Board of Directors ,
Chief Information Security Officer (CISO) ,
Corporate Governance ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Disclosure Requirements ,
Enforcement Actions ,
Fraud ,
Incident Response Plans ,
Material Misrepresentation ,
Misleading Statements ,
Publicly-Traded Companies ,
Risk Mitigation ,
Securities and Exchange Commission (SEC) ,
Securities Fraud ,
SolarWinds
The U.S. District Court for the Southern District of New York on July 18, 2024, dismissed most of the SEC's landmark cyber enforcement litigation against SolarWinds Corp. (SolarWinds or the Company) and the Company's Chief...more
7/24/2024
/ Audits ,
Chief Information Security Officer (CISO) ,
Corporate Counsel ,
Cybersecurity ,
Disclosure Requirements ,
Enforcement Actions ,
Enforcement Authority ,
Form 8-K ,
Hackers ,
Internal Controls ,
Material Misstatements ,
Materiality ,
Motion to Dismiss ,
NIST ,
Popular ,
Sarbanes-Oxley ,
Securities and Exchange Commission (SEC) ,
Software Developers ,
SolarWinds
The SEC continues to expand its cybersecurity enforcement authority to include allegations that a company's failure to monitor its managed security service providers (MSSP) amounts to violations of federal securities laws....more
7/9/2024
/ Accounting Controls ,
Chief Information Security Officer (CISO) ,
Corporate Governance ,
Cybersecurity ,
Data Breach ,
Disclosure Requirements ,
Enforcement Actions ,
Form 8-K ,
Incident Response Plans ,
Internal Controls ,
Personally Identifiable Information ,
Securities and Exchange Commission (SEC) ,
Securities Exchange Act
The SEC has been aggressively pursuing cybersecurity investigations and enforcement actions against public companies and foreign private issuers. In these actions, the SEC often alleges one of two theories: 1) that the...more
7/8/2024
/ Chief Information Security Officer (CISO) ,
Corporate Governance ,
Cyber Incident Reporting ,
Cybersecurity ,
Data Protection ,
Disclosure Requirements ,
Enforcement Actions ,
Foreign Private Issuers ,
Form 8-K ,
Materiality ,
Misrepresentation ,
Professional Liability ,
Publicly-Traded Companies ,
Puffery ,
Risk Management ,
Securities and Exchange Commission (SEC) ,
Security and Privacy Controls ,
SolarWinds