SEC charges SolarWinds with fraud, internal control failures in response to 2020 supply chain compromise

The Securities and Exchange Commission is charging SolarWinds and its chief information security officer, Timothy Brown, with misleading investors regarding the company’s cybersecurity practices and the “elevated risks” the company faced at the time of a major 2020 supply chain compromise.

“The complaint alleges that, from at least [SolarWinds’] October 2018 initial public offering through at least its December 2020 announcement that it was the target of a massive, nearly two-year long cyberattack, dubbed ‘SUNBURST,’ SolarWinds and Brown defrauded investors...