The U.S. Securities and Exchange Commission on Monday sued software company SolarWinds Corporation and its top information security executive, Timothy Brown, alleging the company defrauded investors by concealing vulnerabilities and cyber events during a massive hack targeting the U.S. government.

This is the first time the SEC has sued a company that has been victim of a cyberattack,  instead of charging and simultaneously settling with the company. Authorities said Brown internally discussed known risks and vulnerabilities, but painted a starkly different portrayal to the public, even as customers, including a federal agency, alerted SolarWinds to malicious activity on its flagship software. Read more about this story on our LinkedIn page