Tech Debt is Common. What does it mean for IPO readiness from a cybersecurity perspective?
ESG Essentials: What You Need To Know Now - Episode 17 - The Evolution of ESG Enforcement Under the SEC
Navigating Compliance in Government Contracts: Insights from SEC and DOJ Perspectives
Episode 338 -- Deep Dive into the Deere SEC FCPA Case
PODCAST: Williams Mullen's Raising Capital 101: A Securities Podcast - What Makes it a Securities Offering?
All Things Investigations: Anchored in Fraud: Mike DeBernardis and Shayda Vance on Austal USA’s Scandal
The Legal Tightrope: Surviving Parallel Investigations
Navigating Government Contracts: Diana Shaw on Oversight and Whistleblower Protections
From Court to Code: Smart Contracts and Arbitration
Episode 335 -- The New DOJ Whistleblower Program
Navigating Emerging Privacy Issues in Financial Services — The Consumer Finance Podcast
Implications of the SEC Cybersecurity Disclosure Rule
Corruption, Crime and Compliance: SEC Suffers Dismissal of Claims in Solarwinds Securities Fraud Case
Episode 334 -- District Court Dismisses Bulk of SEC Claims Against Solarwinds
The Woody Report: The Solar Winds Dismissal
In That Case: Securities and Exchange Commission v. Jarkesy
Corruption, Crime and Compliance: Deep Dive into The SEC’s Settlement with R&R Donnelly on Cybersecurity Controls
Episode 332 -- Deep Dive into SEC’s Internal Controls and Cybersecurity Settlement with R&R Donnelly
The Justice Insiders Podcast: Jarkesy’s Implications for the Administrative State
DE Under 3: OFCCP Must Shut Down its Administrative Court Prosecutions as a Result of SCOTUS’ SEC Jury Trial Case Decision
The SEC on Oct. 22, 2024, announced charges against four companies for allegedly making materially misleading disclosures concerning the impact of cybersecurity incidents associated with the compromised SolarWinds' Orion...more
On October 22, 2024, the SEC charged two current reporting companies, Unisys Corp. and Check Point Software Technologies, and two former public companies, Mimecast Limited and Avaya Holdings Corp., with making materially...more
On Oct. 22, 2024, the Securities and Exchange Commission (SEC) announced settled charges against four current and former public companies, Unisys, Avaya Holdings, Check Point Software Technologies and Mimecast, for allegedly...more
By now, public companies are generally aware of the cybersecurity rules adopted by the U.S. Securities and Exchange Commission a year ago, requiring public companies to disclose material cybersecurity incidents under Item...more
On July 18, 2024, Judge Paul A. Engelmeyer of the U.S. District Court for the Southern District of New York issued a 107-page opinion dismissing most of the Securities and Exchange Commission’s (SEC) case against SolarWinds...more
Ongoing wars abroad, political division and election year uncertainty in the United States, along with continuing state, federal, and global regulatory discord on sustainability and artificial intelligence, among other...more
In the July edition of our Public Company Watch, we cover key issues impacting public companies, including the new Compliance and Disclosure Interpretations related to the cybersecurity disclosure rules and the recent SEC...more
The U.S. District Court for the Southern District of New York on July 18, 2024, dismissed most of the SEC's landmark cyber enforcement litigation against SolarWinds Corp. (SolarWinds or the Company) and the Company's Chief...more
On July 18, Judge Paul Engelmayer of the Southern District of New York issued a lengthy order dismissing the majority of the SEC’s enforcement case against SolarWinds Corporation (SolarWinds) and its CISO, Timothy Brown. The...more
The US Securities and Exchange Commission (SEC), Division of Corporation Finance on June 24, 2024 issued five Compliance and Disclosure Interpretations (C&DIs) on its website to address questions raised by its requirement for...more
On June 18, 2024, the Securities and Exchange Commission (SEC) announced that it had settled claims against RR Donnelley (RRD) related to a 2021 ransomware and cyber extortion attack. Despite RRD having discovered and...more
The Securities and Exchange Commission (the “SEC”) has issued five compliance and disclosure interpretations related to the disclosure of material cybersecurity incidents under Item 1.05 of Form 8-K....more
On June 24, 2024, the SEC issued five new Compliance & Disclosure Interpretations (C&DIs) relating to the materiality assessment and disclosure requirements of material cybersecurity incidents under Item 1.05 of Form 8-K....more
On June 24, 2024, the Division of Corporation Finance (“Corp Fin”) of the Securities and Exchange Commission (“SEC”) issued five new Compliance and Disclosure Interpretations (“C&DIs”) related to the disclosure of “material”...more
The SEC continues to expand its cybersecurity enforcement authority to include allegations that a company's failure to monitor its managed security service providers (MSSP) amounts to violations of federal securities laws....more
Corp Fin issues statement, new C&DIs on disclosure of cybersecurity incidents - On May 21, 2024, Erik Gerding, director of the Securities and Exchange Commission (SEC) Division of Corporation Finance (Corp Fin), issued a...more
The SEC has been aggressively pursuing cybersecurity investigations and enforcement actions against public companies and foreign private issuers. In these actions, the SEC often alleges one of two theories: 1) that the...more
The SEC’s Director of Corporation Finance, Erik Gerding, recently issued two statements regarding a public company’s disclosure obligations in response to a cybersecurity incident. These remarks follow the adoption of the...more
On June 24, 2024, the U.S. Securities and Exchange Commission (SEC) Division of Corporation Finance (Corp Fin) added to its Compliance and Disclosure Interpretations (C&DI) related to disclosure of Material Cybersecurity...more
Corp Fin has just issued a new set of CDIs under Form 8-K, Item 1.05, Material Cybersecurity Incidents. The SEC adopted final rules regarding cybersecurity disclosure in 2023, requiring companies “to disclose material...more
The Securities and Exchange Commission entered into a resolution agreement with R.R. Donnelley & Sons (RRD) on June 18, 2024 with RRD agreeing to pay $2.125 million to resolve disclosure and control violations alleged by the...more
On June 24, 2024, the SEC released five new CDIs on Material Cybersecurity Incidents. Please see a high-level summary below...more
The SEC’s Division of Corporation Finance yesterday published five new Compliance and Disclosure Interpretations, or “C&DIs,” all concerning Item 1.05 of Exchange Act Form 8-K, Disclosure of Cybersecurity Incidents....more
Erik Gerding, Director, SEC Division of Corporation Finance, issued a statement to clear up misconceptions following filing of an 8-K disclosing a cybersecurity incident....more
As questions and commentary continue to arise with respect to the SEC’s rules on disclosure of material cybersecurity incidents, the SEC staff has sought to provide additional guidance on the application of the final...more