They didn't say the SEC did it, they said the SEC was "responsible" for it.
Which may or may not be true, if they were using "password123" then sure that's negligent and they'd bear some of the responsibility, but it might not have been the SEC's fault at all.
> Which may or may not be true, if they were using "password123" then sure that's negligent and they'd bear some of the responsibility, but it might not have been the SEC's fault at all.
It seems like SEC didn't even have some basic protections in place for their Twitter account, like having 2nd-factor enabled. That feels kind of negligent already, even if they had a very secure password.
Which may or may not be true, if they were using "password123" then sure that's negligent and they'd bear some of the responsibility, but it might not have been the SEC's fault at all.