The US Securities and Exchange Commission (SEC) waited until Wednesday to disclose a hack of its corporate filing system that occurred last year, raising questions about the agency’s ability to protect important financial information and comes as Americans are still weighing the consequences of the massive hack at Equifax Inc.
While the SEC discovered the breach to its corporate filing system last year, the agency said it only became aware last month that information obtained by the intruders might have been used for illegal trading profits.
Experts question the length of time taken to disclose the breach and why the SEC is not meeting the same security standards it demands of corporate America.
Photo: Reuters
“It took quite a while,” said Robert Cattanach, an attorney at Dorsey & Whitney and former trial attorney for the US Department of Justice, whose work includes cybersecurity and data breaches. “The integrity of our whole trading system is dependent on keeping this information secure... People have got some ‘splaining to do.”
The SEC did not explain why the initial hack was not revealed sooner, or which individuals or companies may have been affected. The disclosure came two months after a government watchdog said deficiencies in the corporate filing system put the system, and the information it contains, at risk.
The SEC also did not disclose any information about who might have carried out the breach. A hack by Chinese or Russian actors cannot be ruled out, experts say.
“Certainly state actors would be on the list of suspects that come to mind,” said Marcus Christian, a former federal prosecutor who is an attorney working in Mayer Brown’s cybersecurity and national security practices.
Still, the list would also include “regular old criminal actors,” Christian added.
SEC Chairman Jay Clayton disclosed the hack in a statement posted to the agency’s Web site. It came just two weeks after the credit agency Equifax revealed a stunning cyberattack that exposed highly sensitive personal information of 143 million people.
Clayton is to appear on Tuesday before the US Senate Banking Committee, and he is certain to be questioned about the hack.
US Senator and committee member Mark Warner said in a statement on Thursday that the disclosures by the SEC and Equifax show “that government and businesses need to step up their efforts to protect our most sensitive personal and commercial information.”
Clayton blamed the breach on “a software vulnerability” in the filing system known as EDGAR —Electronic Data Gathering, Analysis and Retrieval system.
EDGAR processes more than 1.7 million electronic filings a year. Those documents can cause enormous movements in the stock market, sending billions of US dollars into motion in fractions of a second.
The hack of EDGAR is especially concerning because of how widely investors have used and trusted the system, which first came online in the early 1990s.
Companies periodically file earnings and a range of financial information, and they alert investors to important developments that could affect their share prices, like government investigations, executive shake-ups and approaches for a takeover.
The DBS Foundation yesterday announced the launch of two flagship programs, “Silver Motion” and “Happier Caregiver, Healthier Seniors,” in partnership with CCILU Ltd, Hondao Senior Citizens’ Welfare Foundation and the Garden of Hope Foundation to help Taiwan face the challenges of a rapidly aging population. The foundation said it would invest S$4.91 million (US$3.8 million) over three years to foster inclusion and resilience in an aging society. “Aging may bring challenges, but it also brings opportunities. With many Asian markets rapidly becoming super-aged, the DBS Foundation is working with a regional ecosystem of like-minded partners across the private, public and people sectors
BREAKTHROUGH TECH: Powertech expects its fan-out PLP system to become mainstream, saying it can offer three-times greater production throughput Chip packaging service provider Powertech Technology Inc (力成科技) plans to more than double its capital expenditures next year to more than NT$40 billion (US$1.31 billion) as demand for its new panel-level packaging (PLP) technology, primarily used in chips for artificial intelligence (AI) applications, has greatly exceeded what it can supply. A significant portion of the budget, about US$1 billion, would be earmarked for fan-out PLP technology, Powertech told investors yesterday. Its heavy investment in fan-out PLP technology over the past 10 years is expected to bear fruit in 2027 after the technology enters volume production, it said, adding that the tech would
Taiwan Semiconductor Manufacturing Co (TSMC, 台積電) has secured three construction permits for its plan to build a state-of-the-art A14 wafer fab in Taichung, and is likely to start construction soon, the Central Taiwan Science Park Bureau said yesterday. Speaking with CNA, Wang Chun-chieh (王俊傑), deputy director general of the science park bureau, said the world’s largest contract chipmaker has received three construction permits — one to build a fab to roll out sophisticated chips, another to build a central utility plant to provide water and electricity for the facility and the other to build three office buildings. With the three permits, TSMC
YEAR-END BOOST: The holiday shopping season in the US and Europe, combined with rising demand for AI applications, is expected to drive exports to a new high, the NDC said Taiwan’s business climate monitor improved last month, transitioning from steady growth for the first time in five months, as robust global demand for artificial intelligence (AI) products and new iPhone shipments boosted exports and corporate sales, the National Development Council (NDC) said yesterday. The council uses a five-color system to measure the nation’s economic state, with “green” indicating steady growth, “red” suggesting a boom and “blue” reflecting a recession. “Yellow-red” and “yellow-blue” suggest a transition to a stronger or weaker condition. The total score of the monitor’s composite index rose to 35 points from a revised 31 in August, ending a four-month
RSS