Language Selection

English French German Italian Portuguese Spanish

SEC gets a taste of its own medicine

Filed under
Security

Like a professor flunking part of his own test, the agency that grades corporate America on its accounting announced Thursday that it had three major flaws of its own in its internal systems for preventing financial fraud or mistakes.

The Securities and Exchange Commission got a passing grade for financial accuracy in its first-ever audited financial statements. But the Government Accountability Office found the SEC lacking in how it tracks fines and penalties collected from corporations and others, how it ensures that unauthorized people can't tamper with its computer systems, and how it prepares its financial reports.

The finding was part of the SEC's first annual Performance and Accountability report, required by a 2002 law that aimed to make government agencies account for how they spend taxpayer dollars.

That the SEC had to disclose three ``weaknesses'' will probably be a bittersweet irony for the hundreds of valley companies that file their financial reports for SEC approval. Many of them have been loudly decrying the cost and burden of new requirements to document and test such controls, while getting only minimal relief from the SEC.

``This will probably give people in public companies a lot of emotional satisfaction, seeing the SEC hoisted on its own petard,'' said Bill Sherman, a corporate lawyer with Morrison & Foerster in Palo Alto.

Asked by reporters on a conference call if it was embarrassed to have failed standards it enforces every day, the SEC reacted like many of the dozens of companies that have reported material weaknesses -- by focusing on the positive.

``We feel the process was a healthy process,'' said Peter Derby, the SEC's managing executive for operations, noting that the SEC was fixing the problems.

Other executives say they'd laugh at the irony if they weren't still crying over the multimillion-dollar cost and thousands of hours required to document and test their controls -- made mandatory in the 2002 corporate crackdown law known as Sarbanes-Oxley. ``It's amusing,'' said Bryan Stolle, chief executive of Agile Software.

``But the damage and the pain is so high, it's a shame.''

David Dunlap, chief financial officer at Socket Communications in Newark, said he's not surprised the SEC's first audit wouldn't be perfect. But he said it's ``satisfying'' that the SEC is now following its own rules.

``What's good for the goose is good for the gander.''

By Deborah Lohse
Mercury News.

More in Tux Machines

Linux: To recurse or not

Linux and recursion are on very good speaking terms. In fact, a number of Linux command recurse without ever being asked while others have to be coaxed with just the right option. When is recursion most helpful and how can you use it to make your tasks easier? Let’s run through some useful examples and see. Read more

Today in Techrights

Android Leftovers

today's leftovers

  • MX Linux Review of MX-17 – For The Record
    MX Linux Review of MX-17. MX-17 is a cooperative venture between the antiX and former MEPIS Linux communities. It’s XFCE based, lightning fast, comes with both 32 and 64-bit CPU support…and the tools. Oh man, the tools available in this distro are both reminders of Mepis past and current tech found in modern distros.
  • Samsung Halts Android 8.0 Oreo Rollouts for Galaxy S8 Due to Unexpected Reboots
    Samsung stopped the distribution of the Android 8.0 Oreo operating system update for its Galaxy S8 and S8+ smartphones due to unexpected reboots reported by several users. SamMobile reported the other day that Samsung halted all Android 8.0 Oreo rollouts for its Galaxy S8/S8+ series of Android smartphones after approximately a week since the initial release. But only today Samsung published a statement to inform user why it stopped the rollouts, and the cause appears to be related to a limited number of cases of unexpected reboots after installing the update.
  • Xen Project Contributor Spotlight: Kevin Tian
    The Xen Project is comprised of a diverse set of member companies and contributors that are committed to the growth and success of the Xen Project Hypervisor. The Xen Project Hypervisor is a staple technology for server and cloud vendors, and is gaining traction in the embedded, security and automotive space. This blog series highlights the companies contributing to the changes and growth being made to the Xen Project and how the Xen Project technology bolsters their business.
  • Initial Intel Icelake Support Lands In Mesa OpenGL Driver, Vulkan Support Started
    A few days back I reported on Intel Icelake patches for the i965 Mesa driver in bringing up the OpenGL support now that several kernel patch series have been published for enabling these "Gen 11" graphics within the Direct Rendering Manager driver. This Icelake support has been quick to materialize even with Cannonlake hardware not yet being available.
  • LunarG's Vulkan Layer Factory Aims To Make Writing Vulkan Layers Easier
    Introduced as part of LunarG's recent Vulkan SDK update is the VLF, the Vulkan Layer Factory. The Vulkan Layer Factory aims to creating Vulkan layers easier by taking care of a lot of the boilerplate code for dealing with the initialization, etc. This framework also provides for "interceptor objects" for overriding functions pre/post API calls for Vulkan entry points of interest.