The US Securities and Exchange Commission (SEC) waited until Wednesday to disclose a hack of its corporate filing system that occurred last year, raising questions about the agency’s ability to protect important financial information and comes as Americans are still weighing the consequences of the massive hack at Equifax Inc.
While the SEC discovered the breach to its corporate filing system last year, the agency said it only became aware last month that information obtained by the intruders might have been used for illegal trading profits.
Experts question the length of time taken to disclose the breach and why the SEC is not meeting the same security standards it demands of corporate America.
Photo: Reuters
“It took quite a while,” said Robert Cattanach, an attorney at Dorsey & Whitney and former trial attorney for the US Department of Justice, whose work includes cybersecurity and data breaches. “The integrity of our whole trading system is dependent on keeping this information secure... People have got some ‘splaining to do.”
The SEC did not explain why the initial hack was not revealed sooner, or which individuals or companies may have been affected. The disclosure came two months after a government watchdog said deficiencies in the corporate filing system put the system, and the information it contains, at risk.
The SEC also did not disclose any information about who might have carried out the breach. A hack by Chinese or Russian actors cannot be ruled out, experts say.
“Certainly state actors would be on the list of suspects that come to mind,” said Marcus Christian, a former federal prosecutor who is an attorney working in Mayer Brown’s cybersecurity and national security practices.
Still, the list would also include “regular old criminal actors,” Christian added.
SEC Chairman Jay Clayton disclosed the hack in a statement posted to the agency’s Web site. It came just two weeks after the credit agency Equifax revealed a stunning cyberattack that exposed highly sensitive personal information of 143 million people.
Clayton is to appear on Tuesday before the US Senate Banking Committee, and he is certain to be questioned about the hack.
US Senator and committee member Mark Warner said in a statement on Thursday that the disclosures by the SEC and Equifax show “that government and businesses need to step up their efforts to protect our most sensitive personal and commercial information.”
Clayton blamed the breach on “a software vulnerability” in the filing system known as EDGAR —Electronic Data Gathering, Analysis and Retrieval system.
EDGAR processes more than 1.7 million electronic filings a year. Those documents can cause enormous movements in the stock market, sending billions of US dollars into motion in fractions of a second.
The hack of EDGAR is especially concerning because of how widely investors have used and trusted the system, which first came online in the early 1990s.
Companies periodically file earnings and a range of financial information, and they alert investors to important developments that could affect their share prices, like government investigations, executive shake-ups and approaches for a takeover.
‘SWASTICAR’: Tesla CEO Elon Musk’s close association with Donald Trump has prompted opponents to brand him a ‘Nazi’ and resulted in a dramatic drop in sales Demonstrators descended on Tesla Inc dealerships across the US, and in Europe and Canada on Saturday to protest company chief Elon Musk, who has amassed extraordinary power as a top adviser to US President Donald Trump. Waving signs with messages such as “Musk is stealing our money” and “Reclaim our country,” the protests largely took place peacefully following fiery episodes of vandalism on Tesla vehicles, dealerships and other facilities in recent weeks that US officials have denounced as terrorism. Hundreds rallied on Saturday outside the Tesla dealership in Manhattan. Some blasted Musk, the world’s richest man, while others demanded the shuttering of his
ADVERSARIES: The new list includes 11 entities in China and one in Taiwan, which is a local branch of Chinese cloud computing firm Inspur Group The US added dozens of entities to a trade blacklist on Tuesday, the US Department of Commerce said, in part to disrupt Beijing’s artificial intelligence (AI) and advanced computing capabilities. The action affects 80 entities from countries including China, the United Arab Emirates and Iran, with the commerce department citing their “activities contrary to US national security and foreign policy.” Those added to the “entity list” are restricted from obtaining US items and technologies without government authorization. “We will not allow adversaries to exploit American technology to bolster their own militaries and threaten American lives,” US Secretary of Commerce Howard Lutnick said. The entities
Minister of Finance Chuang Tsui-yun (莊翠雲) yesterday told lawmakers that she “would not speculate,” but a “response plan” has been prepared in case Taiwan is targeted by US President Donald Trump’s reciprocal tariffs, which are to be announced on Wednesday next week. The Trump administration, including US Secretary of the Treasury Scott Bessent, has said that much of the proposed reciprocal tariffs would focus on the 15 countries that have the highest trade surpluses with the US. Bessent has referred to those countries as the “dirty 15,” but has not named them. Last year, Taiwan’s US$73.9 billion trade surplus with the US
Prices of gasoline and diesel products at domestic gas stations are to fall NT$0.2 and NT$0.1 per liter respectively this week, even though international crude oil prices rose last week, CPC Corp, Taiwan (台灣中油) and Formosa Petrochemical Corp (台塑石化) said yesterday. International crude oil prices continued rising last week, as the US Energy Information Administration reported a larger-than-expected drop in US commercial crude oil inventories, CPC said in a statement. Based on the company’s floating oil price formula, the cost of crude oil rose 2.38 percent last week from a week earlier, it said. News that US President Donald Trump plans a “secondary
RSS