SEC fines four companies $7 million for 'misleading cyber disclosures' regarding SolarWinds hack | TechCrunch

SEC fines four companies $7 million for 'misleading cyber disclosures' regarding SolarWinds hack | TechCrunch

Briefly

"While public companies may become targets of cyberattacks, it is incumbent upon them to not further victimize their shareholders or other members of the investing public by providing misleading disclosures about the cybersecurity incidents they have encountered."

TechCrunchhttps://techcrunch.com/2024/10/22/sec-fines-four-companies-7-million-for-misleading-cyber-disclosures-regarding-solarwinds-hack/

"The SEC's orders find that these companies provided misleading disclosures about the incidents at issue, leaving investors in the dark about the true scope of the incidents."

TechCrunchhttps://techcrunch.com/2024/10/22/sec-fines-four-companies-7-million-for-misleading-cyber-disclosures-regarding-solarwinds-hack/

"Avaya said hackers accessed a 'limited number' of the company's emails, but did not say that the hackers also accessed 'at least 145 files in its cloud file sharing environment.'"

TechCrunchhttps://techcrunch.com/2024/10/22/sec-fines-four-companies-7-million-for-misleading-cyber-disclosures-regarding-solarwinds-hack/

"Check Point described cyber intrusions and risks in 'generic terms,' and Mimecast minimized the attack by failing to disclose what code and the quantity of company encrypted credentials that the hackers stole."

TechCrunchhttps://techcrunch.com/2024/10/22/sec-fines-four-companies-7-million-for-misleading-cyber-disclosures-regarding-solarwinds-hack/