The US Securities and Exchange Commission (SEC) waited until Wednesday to disclose a hack of its corporate filing system that occurred last year, raising questions about the agency’s ability to protect important financial information and comes as Americans are still weighing the consequences of the massive hack at Equifax Inc.
While the SEC discovered the breach to its corporate filing system last year, the agency said it only became aware last month that information obtained by the intruders might have been used for illegal trading profits.
Experts question the length of time taken to disclose the breach and why the SEC is not meeting the same security standards it demands of corporate America.
Photo: Reuters
“It took quite a while,” said Robert Cattanach, an attorney at Dorsey & Whitney and former trial attorney for the US Department of Justice, whose work includes cybersecurity and data breaches. “The integrity of our whole trading system is dependent on keeping this information secure... People have got some ‘splaining to do.”
The SEC did not explain why the initial hack was not revealed sooner, or which individuals or companies may have been affected. The disclosure came two months after a government watchdog said deficiencies in the corporate filing system put the system, and the information it contains, at risk.
The SEC also did not disclose any information about who might have carried out the breach. A hack by Chinese or Russian actors cannot be ruled out, experts say.
“Certainly state actors would be on the list of suspects that come to mind,” said Marcus Christian, a former federal prosecutor who is an attorney working in Mayer Brown’s cybersecurity and national security practices.
Still, the list would also include “regular old criminal actors,” Christian added.
SEC Chairman Jay Clayton disclosed the hack in a statement posted to the agency’s Web site. It came just two weeks after the credit agency Equifax revealed a stunning cyberattack that exposed highly sensitive personal information of 143 million people.
Clayton is to appear on Tuesday before the US Senate Banking Committee, and he is certain to be questioned about the hack.
US Senator and committee member Mark Warner said in a statement on Thursday that the disclosures by the SEC and Equifax show “that government and businesses need to step up their efforts to protect our most sensitive personal and commercial information.”
Clayton blamed the breach on “a software vulnerability” in the filing system known as EDGAR —Electronic Data Gathering, Analysis and Retrieval system.
EDGAR processes more than 1.7 million electronic filings a year. Those documents can cause enormous movements in the stock market, sending billions of US dollars into motion in fractions of a second.
The hack of EDGAR is especially concerning because of how widely investors have used and trusted the system, which first came online in the early 1990s.
Companies periodically file earnings and a range of financial information, and they alert investors to important developments that could affect their share prices, like government investigations, executive shake-ups and approaches for a takeover.
Zhang Yazhou was sitting in the passenger seat of her Tesla Model 3 when she said she heard her father’s panicked voice: The brakes do not work. Approaching a red light, her father swerved around two cars before plowing into a sport utility vehicle and a sedan, and crashing into a large concrete barrier. Stunned, Zhang gazed at the deflating airbag in front of her. She could never have imagined what was to come: Tesla Inc sued her for defamation for complaining publicly about the vehicles brakes — and won. A Chinese court ordered Zhang to pay more than US$23,000 in
Taiwan Semiconductor Manufacturing Co (TSMC, 台積電) yesterday said that its investment plan in Arizona is going according to schedule, following a local media report claiming that the company is planning to break ground on its third wafer fab in the US in June. In a statement, TSMC said it does not comment on market speculation, but that its investments in Arizona are proceeding well. TSMC is investing more than US$65 billion in Arizona to build three advanced wafer fabs. The first one has started production using the 4-nanometer (nm) process, while the second one would start mass production using the
A TAIWAN DEAL: TSMC is in early talks to fully operate Intel’s US semiconductor factories in a deal first raised by Trump officials, but Intel’s interest is uncertain Broadcom Inc has had informal talks with its advisers about making a bid for Intel Corp’s chip-design and marketing business, the Wall Street Journal reported, citing people familiar with the matter. Nothing has been submitted to Intel and Broadcom could decide not to pursue a deal, according to the Journal. Bloomberg News earlier reported that Taiwan Semiconductor Manufacturing Co (TSMC, 台積電) is in early talks for a controlling stake in Intel’s factories at the request of officials at US President Donald Trump’s administration, as the president looks to boost US manufacturing and maintain the country’s leadership in critical technologies. Trump officials raised the
From George Clooney to LeBron James, celebrities in the US have cashed in on tequila’s soaring popularity, but in Mexico, producers of the agave plant used to make the country’s most famous liquor are nursing a nasty hangover. Instead of bringing a long period of prosperity for farmers of the spiky succulent, the tequila boom has created a supply glut that sent agave prices slumping. Mexican tequila exports surged from 224 million liters in 2018 to a record 402 million last year, according to the Tequila Regulatory Council, which oversees qualification for the internationally recognized denomination of origin label. The US, Germany, Spain,
RSS