Week wrap-up: SEC Charges SolarWinds and CISO with Fraud
Share
Yoooooooooo! Bad Boys, bad boys, what you gonna do? Well, go to jail for starters, but I digress…How are my my security warriors doing today? Hopefully better than Timothy here! Todays blog commentary is going to discuss this article:
To catch everyone up to a few years ago…Solarwinds is a technology who sells security software that is used by a good number of enterprise companies… They are also famously known for allowing their security software to be hijacked because they used the password "Solarwinds123" as the password for their software repository. Long story short hackers exploited this by altering the code that solar winds was patching on their customers systems allowing them full control of everything.
Now that we are caught up to the present day, we see that the SEC is now formally charging the ex-CISO with fraud concerning the plethora of internal control failures that existed under his command… mind you he is not being charged because he failed to secure his network. That would be unduly punitive.
He is being charged by the SEC because he actively lied to investors, to customers, and to the investigating government bodies as to the fortitude of SolarWinds security practices.
To all my security warriors out there. We can be the smartest, we can be the fastest, we can be the greatest IT mind out there… but if we don't have honesty we have nothing. Honesty is the foundation on which we build our world. If we are dishonest at best we will only lose the faith of our clients… at worst we might be charged by the SEC for fraud.
Good luck out there and please remember that honesty is the bulwark of our service offering. No paycheck is worth your karma being absolutely manhandled by dishonesty…stay strong, you might be fired, but at least you wont earn the ClubFed All inclusive package for 5-10 years!
Contact Us to learn more about how to stay cybersecurity-safe!