The US Securities and Exchange Commission (SEC) has sued international law firm Covington & Burling for details about 298 of the biz’s clients whose information was accessed by a Chinese state-sponsored hacking group in November 2020. The breach in question is the now-infamous Microsoft Exchange attack in which Hafnium exploited four zero-day vulnerabilities in the email platform to steal data from US-based defense contractors, law firms, and infectious disease researchers.
Read full article on The Register