The SEC charged Unisys, Avaya, Check Point Software Technologies and Mimecast for downplaying breaches stemming from the Solarwinds supply chain attacks. This Risk & Repeat episode discusses the charges and the questions they raise about cybersecurity disclosure practices and transparency.