If you are a publicly traded software company, and your customers access your product through a server, and you provide them with a default password to log into the server, and the default password is “password,” is that securities fraud? You know the answer!
Yesterday the US Securities and Exchange Commission sued “software company SolarWinds Corporation and its chief information security officer, Timothy G. Brown, for fraud and internal control failures relating to allegedly known cybersecurity risks and vulnerabilities.” SolarWinds sells network management software to companies and governments, including “an information technology infrastructure and management platform” called Orion. In 2020, Orion was famously hacked by Russian state actors, who inserted hidden code into Orion software updates and were “then able to remotely exploit the networks and systems of SolarWinds’ customers,” which they used “for the primary purpose of espionage.”
Author: John Hogan MD
Last Updated: 1700344681
Views: 1584
Rating: 3.6 / 5 (91 voted)
Reviews: 84% of readers found this page helpful
Name: John Hogan MD
Birthday: 1950-05-19
Address: 080 Floyd Underpass Apt. 641, Lake Amandatown, NM 58909
Phone: +4383175683566496
Job: Firefighter
Hobby: Orienteering, Wildlife Photography, Baking, Soccer, Playing Guitar, Cycling, Beekeeping
Introduction: My name is John Hogan MD, I am a unwavering, Precious, strong-willed, capable, proficient, transparent, dedicated person who loves writing and wants to share my knowledge and understanding with you.