Skip to content

Menu

LexBlog, Inc. logo
NetworkSub-MenuBrowse by SubjectBrowse by PublisherJoin the NetworkGet StartedSubscribeSupport
Contact Us
Search
Close

SEC v. SolarWinds Update: U.S. Federal District Court Dismisses Most of the SEC’s Case, but Some Fraud Claims and CISO Liability Remain

By Tracy S. Combs, Steven M. Malina, Jena M. Valdetero & Nair Marie Banks ˘ on July 26, 2024
Email this postTweet this postLike this postShare this post on LinkedIn
Protect cloud information data concept. Security and safety of cloud data.

A U.S. district court dismissed all the SEC’s securities fraud and false filings claims against SolarWinds and its Chief Information Security Officer (CISO) Timothy Brown regarding the adequacy of cyberattack disclosures, finding that the SEC had impermissibly relied on “hindsight and speculation” to find those disclosures fraudulent. The court also dismissed the SEC’s claims that SolarWinds’ cybersecurity deficiencies amounted to deficient internal accounting controls, finding that the SEC had stretched the definition of “accounting” past its limit.

Continue reading the full GT Alert.

Photo of Tracy S. Combs Tracy S. Combs

Tracy serves as Co-Managing Shareholder of the Salt Lake City office. A former Regional Director at the U.S. Securities and Exchange Commission, she represents corporations, financial institutions, and individuals in a wide range of federal and state government investigations, litigation, and regulatory inquiries…

Tracy serves as Co-Managing Shareholder of the Salt Lake City office. A former Regional Director at the U.S. Securities and Exchange Commission, she represents corporations, financial institutions, and individuals in a wide range of federal and state government investigations, litigation, and regulatory inquiries nationwide, including those involving the SEC, the Department of Justice, and state Attorneys General. She also counsels clients in complex business disputes, tort litigation, and cybersecurity matters. As Utah Business Journal’s Legal Elite edition stated in 2025, Tracy can “navigate a wide range of legal situations and…easily handle a crisis for any client.”

Tracy joined GT after an eight-year tenure at the SEC, where she served in a variety of roles in San Francisco and Salt Lake City. Most recently, Tracy served as Director of the SEC’s Salt Lake Regional Office, where she oversaw some of its most high-profile cases. As a former SEC trial and investigative attorney in San Francisco, Tracy brought several groundbreaking enforcement actions, including the SEC’s first public company cybersecurity disclosure case and its first “shadow” insider trading case. Tracy served for three years in the Division of Enforcement’s former Cyber Unit, where she co-led its Cybersecurity & Regulated Entities group. In 2021 to 2022, Tracy served as counsel to the Director of Enforcement, advising on priority matters and coordinating with the SEC’s criminal and civil law enforcement partners nationwide.

Prior to her government service, Tracy was a litigator at a large law firm in Philadelphia and New York, with a focus on high-stakes white collar criminal matters, securities class actions, and complex commercial disputes, and clerked for the Honorable Luis Felipe Restrepo in the U.S. District Court for the Eastern District of Pennsylvania.

Read more about Tracy S. CombsEmail
Show more Show less
Photo of Steven M. Malina Steven M. Malina

Steven M. Malina, a former Senior Attorney in the SEC’s enforcement branch, focuses his practice on a variety of litigation and regulatory matters with representations of financial services industry clients, hedge fund matters, and securities and general commercial litigation. He represents officers, directors,

…

Steven M. Malina, a former Senior Attorney in the SEC’s enforcement branch, focuses his practice on a variety of litigation and regulatory matters with representations of financial services industry clients, hedge fund matters, and securities and general commercial litigation. He represents officers, directors, broker-dealers, investment advisors, commercial banks, investment banks, investment management firms, and public issuers in investigations and disciplinary proceedings initiated by the SEC, CFTC, FINRA, FDIC, NYSE, CBOE, CME, and state regulators. In addition, Steve represents clients in related investor class-action, derivative, and other litigation and arbitration. He has also conducted internal investigations on behalf of publicly traded companies and represented committees and executive officers in internal investigations. Steve has represented brokerage firms and their management in customer-initiated cases, and injunction and arbitration proceedings.

Prior to entering private practice, Steve served as First Vice President and Deputy Regional Counsel for a large financial corporation and was a Senior Attorney in the Branch of Enforcement of the U.S. Securities and Exchange Commission.

Read more about Steven M. MalinaEmailSteven's Linkedin Profile
Show more Show less
Photo of Jena M. Valdetero Jena M. Valdetero

Jena M. Valdetero serves as Co-Chair of the firm’s U.S. Data, Privacy and Cybersecurity Practice where she advises clients on complex data privacy and security issues. She has led more than 1,000 data breach investigations. A litigator by background, Jena defends companies against…

Jena M. Valdetero serves as Co-Chair of the firm’s U.S. Data, Privacy and Cybersecurity Practice where she advises clients on complex data privacy and security issues. She has led more than 1,000 data breach investigations. A litigator by background, Jena defends companies against privacy and data breach litigation, with an emphasis on class action lawsuits. She has designed and conducted dozens of data breach tabletop exercises to empower clients to respond effectively to a data security incident. She also counsels companies on data privacy and security compliance programs and advises on privacy and cyber risks associated with mergers and acquisitions, venture capital, and securities. Jena also advises a diverse array of clients on compliance with existing and emerging privacy laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), the Gramm Leach Bliley Act (GLBA), and the Health Insurance Portability and Accountability Act (HIPAA). She is a certified privacy professional through the International Association of Privacy Professionals (CIPP/US), for which she is a former KnowledgeNet Co-Chair.

Read more about Jena M. ValdeteroEmailJena's Linkedin Profile
Show more Show less
Photo of Nair Marie Banks ˘ Nair Marie Banks ˘

Nair Marie Banks ˘ is a Summer Associate based in Greenberg Traurig’s Chicago office.

˘ Not admitted to the practice of law.

Email
  • Posted in:
    Banking, Finance and Securities
  • Blog:
    Data Privacy Dish
  • Organization:
    Greenberg Traurig, LLP
  • Article: View Original Source

Call us at 1-800-913-0988 or email sales@lexblog.com.

Facebook LinkedIn Twitter RSS
  • About LexBlog
  • The Field We Built
  • Our Beliefs
  • Our Team
  • Contact LexBlog
  • Disclaimer
  • Editorial Policy
  • Terms of Service
  • Get Started
  • Publishing Solutions
  • Compass
  • Submit a Request
  • Support Center
  • System Status
Copyright © 2026, LexBlog, Inc. All Rights Reserved.
Law blog design & platform by LexBlog LexBlog Logo