The US Securities and Exchange Commission (SEC) waited until Wednesday to disclose a hack of its corporate filing system that occurred last year, raising questions about the agency’s ability to protect important financial information and comes as Americans are still weighing the consequences of the massive hack at Equifax Inc.
While the SEC discovered the breach to its corporate filing system last year, the agency said it only became aware last month that information obtained by the intruders might have been used for illegal trading profits.
Experts question the length of time taken to disclose the breach and why the SEC is not meeting the same security standards it demands of corporate America.
Photo: Reuters
“It took quite a while,” said Robert Cattanach, an attorney at Dorsey & Whitney and former trial attorney for the US Department of Justice, whose work includes cybersecurity and data breaches. “The integrity of our whole trading system is dependent on keeping this information secure... People have got some ‘splaining to do.”
The SEC did not explain why the initial hack was not revealed sooner, or which individuals or companies may have been affected. The disclosure came two months after a government watchdog said deficiencies in the corporate filing system put the system, and the information it contains, at risk.
The SEC also did not disclose any information about who might have carried out the breach. A hack by Chinese or Russian actors cannot be ruled out, experts say.
“Certainly state actors would be on the list of suspects that come to mind,” said Marcus Christian, a former federal prosecutor who is an attorney working in Mayer Brown’s cybersecurity and national security practices.
Still, the list would also include “regular old criminal actors,” Christian added.
SEC Chairman Jay Clayton disclosed the hack in a statement posted to the agency’s Web site. It came just two weeks after the credit agency Equifax revealed a stunning cyberattack that exposed highly sensitive personal information of 143 million people.
Clayton is to appear on Tuesday before the US Senate Banking Committee, and he is certain to be questioned about the hack.
US Senator and committee member Mark Warner said in a statement on Thursday that the disclosures by the SEC and Equifax show “that government and businesses need to step up their efforts to protect our most sensitive personal and commercial information.”
Clayton blamed the breach on “a software vulnerability” in the filing system known as EDGAR —Electronic Data Gathering, Analysis and Retrieval system.
EDGAR processes more than 1.7 million electronic filings a year. Those documents can cause enormous movements in the stock market, sending billions of US dollars into motion in fractions of a second.
The hack of EDGAR is especially concerning because of how widely investors have used and trusted the system, which first came online in the early 1990s.
Companies periodically file earnings and a range of financial information, and they alert investors to important developments that could affect their share prices, like government investigations, executive shake-ups and approaches for a takeover.
To many, Tatu City on the outskirts of Nairobi looks like a success. The first city entirely built by a private company to be operational in east Africa, with about 25,000 people living and working there, it accounts for about two-thirds of all foreign investment in Kenya. Its low-tax status has attracted more than 100 businesses including Heineken, coffee brand Dormans, and the biggest call-center and cold-chain transport firms in the region. However, to some local politicians, Tatu City has looked more like a target for extortion. A parade of governors have demanded land worth millions of dollars in exchange
An Indonesian animated movie is smashing regional box office records and could be set for wider success as it prepares to open beyond the Southeast Asian archipelago’s silver screens. Jumbo — a film based on the adventures of main character, Don, a large orphaned Indonesian boy facing bullying at school — last month became the highest-grossing Southeast Asian animated film, raking in more than US$8 million. Released at the end of March to coincide with the Eid holidays after the Islamic fasting month of Ramadan, the movie has hit 8 million ticket sales, the third-highest in Indonesian cinema history, Film
BIG BUCKS: Chairman Wei is expected to receive NT$34.12 million on a proposed NT$5 cash dividend plan, while the National Development Fund would get NT$8.27 billion Taiwan Semiconductor Manufacturing Co (TSMC, 台積電), the world’s largest contract chipmaker, yesterday announced that its board of directors approved US$15.25 billion in capital appropriations for long-term expansion to meet growing demand. The funds are to be used for installing advanced technology and packaging capacity, expanding mature and specialty technology, and constructing fabs with facility systems, TSMC said in a statement. The board also approved a proposal to distribute a NT$5 cash dividend per share, based on first-quarter earnings per share of NT$13.94, it said. That surpasses the NT$4.50 dividend for the fourth quarter of last year. TSMC has said that while it is eager
‘IMMENSE SWAY’: The top 50 companies, based on market cap, shape everything from technology to consumer trends, advisory firm Visual Capitalist said Taiwan Semiconductor Manufacturing Co (TSMC, 台積電) was ranked the 10th-most valuable company globally this year, market information advisory firm Visual Capitalist said. TSMC sat on a market cap of about US$915 billion as of Monday last week, making it the 10th-most valuable company in the world and No. 1 in Asia, the publisher said in its “50 Most Valuable Companies in the World” list. Visual Capitalist described TSMC as the world’s largest dedicated semiconductor foundry operator that rolls out chips for major tech names such as US consumer electronics brand Apple Inc, and artificial intelligence (AI) chip designers Nvidia Corp and Advanced
RSS