In an action the SEC’s two Republican Commissioners sharply criticized in a separately-issued statement, the SEC has filed settled charges against business communications services provider R.R. Donnelly & Sons (RRD) relating to the company’s disclosure and accounting controls in connection with cybersecurity incidents the company suffered in late 2021. The company, which the SEC credited for its cooperation and remedial measures, agreed to pay a $2.125 million civil penalty and voluntarily adopted corrective processes and procedures. The settled action provides strong indications of the measures and controls the agency expects reporting companies to adopt and implement with respect to cybersecurity.Continue Reading SEC Files Settled Charges Based on Alleged Cybersecurity-Related Control Deficiencies
On April 12, 2021, when John Coates, the acting director of the SEC Division of Corporate Finance, and Paul Munter, the SEC’s acting chief accountant, 
The threat of cyberscams in the form of what has been called “social engineering fraud” or “payment instruction fraud” has become pervasive. In these swindles, imposters posing as senior corporate executives or company vendors direct company personnel to transfer funds to accounts that the imposters control. Losses from these frauds can be substantial, and, as I have noted on 
Financial restatements among U.S public companies hit their lowest level in years in 2016, according to the updated annual report of Audit Analytics. As a result of heightened standards as well as the decreased numbers of listed companies, the share U.S. companies restating their prior financial statements hit their lowest level since 2010 and the number of companies restating their financials is at its lowest level since at least 2002. The findings are summarized in a June 12, 2017 Audit Analytics blog post (