S.E.C. Says It Was a Victim of Computer Hacking Last Year
are working closely with our fellow financial regulators to improve our ability to receive critical information and alerts and react to cyberthreats.”
If the data stolen from the S. E.C.’s Edgar system was used by hackers to trade in stocks
and reap profits, it would represent the latest in a new area of concern for regulators in the United States — an area in which the underbelly of the internet is joining forces with the darker corners of Wall Street
The Government Accountability Office in July released a 27-page report
that found deficiencies in the S. E.C.’s information systems that “limited the effectiveness of the S. E.C’s controls for protecting confidentiality, integrity and availability.” It also found that the S. E.C.
The agency said it learned in August that an incident detected last year “was exploited
and resulted in access to nonpublic information.” It said the security vulnerability used in the attack had been patched shortly after it was discovered.
HONG KONG — The top securities regulator in the United States said Wednesday night
that its computer system had been hacked last year, giving the attackers private information that could have been exploited for trading.
The disclosure, coming on the heels of a data breach at Equifax, the major consumer credit reporting firm, is likely to
intensify concerns over potential computer vulnerabilities lurking among pillars of the American financial system.
The hacking, it said, “may have provided the basis for illicit gain through trading.”
In its statement, the agency did not release further details of the attack, including
whether it had resulted in disclosure of any information about particular companies.
