The SEC concluded that four tech companies misled investors and minimized the damage they suffered from the SolarWinds supply chain hack.

The companies include IT security firm Check Point and email security provider Mimecast, which were ensnared in the SolarWinds breach four years ago.

The firms minimized how their systems were affected by the breached software, the Securities and Exchange Commission said.

Four hacked companies will pay a total of almost $7 million to settle US Securities and Exchange Commission allegations that they downplayed the significance of the cyberattacks, the latest fallout from the massive SolarWinds Corp.

The agency said Unisys, Avaya Holdings, Check Point Software Technologies and Mimecast provided misleading disclosures about the incidents, leaving investors in the dark about their "true scope."

Unisys Corp, Avaya Holdings, Check Point Software, and Mimecast—for allegedly misleading investors about the impact of their breaches during the massive 2020 SolarWinds Orion hack.

The SEC announces penalties against Unisys, Avaya, Check Point and Mimecast for downplaying the impact of the SolarWinds Orion hack.

Four current and former publicly trading tech companies have agreed to pay civil penalties in relation to the SEC charges

The company was one of four to settle with the Securities and Exchange Commission for charges related to effects of the SolarWinds' Orion software compromise.

The Securities and Exchange Commission fined four cybersecurity companies for downplaying to investors the impact the 2020 Russian hack of SolarWinds had on their own systems. Why