I write on digital and cybersecurity governance and the boardroom. The U.S. Securities and Exchange Commission finalized new cybersecurity disclosure rules in 2023 to improve investor transparency ...
In December 2023, as cyberattacks surged, the U.S. Securities and Exchange Commission (SEC)began enforcing new cybersecurity disclosure rules. This pushed C-level executives and boards to adopt ...
Paul Hastings released its SEC Cyber Incident Disclosure Report today, providing a unique look at how public companies have responded to new ...
The SEC’s rules on Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure, which were adopted in July 2023 and went into effect December 2023, introduced a range of new ...
Most publicly traded companies aren't sharing enough detail with investors about the cyber incidents that affect their ...
The Securities and Exchange Commission (SEC) has adopted new rules requiring public companies to disclose within four days material cybersecurity breaches that could affect investors. In a ...
With its adoption of two new rules around cyber disclosure Wednesday, the Securities and Exchange Commission has enacted the most broad-sweeping regulations the U.S. has ever seen around ...
Much of the public company filings resulting from the Securities and Exchange Commission’s first year of implementing a rule requiring the disclosure of “material” cybersecurity breaches ...
it described its cybersecurity risk profile in terms of "hypothetical" events. In the Matter of Unisys Corporation, SEC Rel. No. 33-11323 (Oct. 22, 2024), opens new tab. Accordingly, these ...
By now, we all know that a cyber breach may lead to the Securities and Exchange Commission asking questions about your disclosures, especially given the new rules on the topic. You might be ...
The four companies charged are cybersecurity ... with the SEC that resolves the regulator’s investigation into the company. In the last few years, the SEC has imposed a series of new obligations ...