In a recent press release, SEC Chairman Gary Gensler addressed the unauthorized access to the SEC’s ‘@SECGov’
official address
Gensler emphasized that based on the current assessment, there is no evidence that unauthorized parties have accessed SEC systems, data, devices or other social media accounts. The SEC recognizes concerns about the security of social media accounts and is taking this incident seriously.
SEC staff collaborates with law enforcement agencies, including the SEC’s Office of the Inspector General, the Federal Bureau of Investigation, and the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency. The SEC commits to provide updates on events as appropriate.
countermeasures
Upon discovering the breach, SEC staff immediately notified the public of the breach through their press office. We also contacted X.com for assistance in terminating unauthorized access. Unauthorized posts have been removed, and new posts have identified security breaches in the account. The SEC believes access was terminated between 4:40 PM and 5:30 PM ET on the same day.
In response to the breach, members of the U.S. Congress, including Senators Ron Wyden and Cynthia Lummis, asked the SEC Inspector General to open an investigation into the commission’s cybersecurity practices.
Unauthorized access details
The incident occurred on January 9, 2024, shortly before the Bitcoin Spot ETF approval date, when an unauthorized party gained control of the SEC Official Despite attempts by unauthorized parties to manipulate information, SEC staff responded quickly, removing unauthorized posts and warning the public.
After this incident, the SEC’s credibility was questioned due to allegations of market manipulation and calls for transparency.