Last month, the Securities and Exchange Commission (SEC) reemphasized just how serious companies must be about maintaining a vigilant cybersecurity posture and procedures to report cyber incidents in a timely manner....more
6/21/2024
/ Corporate Governance ,
Cyber Attacks ,
Cyber Incident Reporting ,
Cybersecurity ,
Disclosure Requirements ,
Enforcement Actions ,
Form 8-K ,
Materiality ,
Publicly-Traded Companies ,
Regulation SCI ,
Securities and Exchange Commission (SEC) ,
Settlement
In less than three months, public companies and certain foreign private companies will have to take additional steps after cybersecurity breaches: deciding whether an incident meets the materiality threshold that requires...more
9/29/2023
/ Compliance ,
Compliance Dates ,
Corporate Governance ,
Customer Proprietary Network Information (CPNI) ,
Cyber Incident Reporting ,
Cybersecurity ,
Disclosure Requirements ,
FCC ,
Final Rules ,
Foreign Private Issuers ,
Form 8-K ,
Materiality ,
Publicly-Traded Companies ,
Regulation S-K ,
Risk Management ,
Securities and Exchange Commission (SEC) ,
Securities Regulation
Just when you thought the hazards of cyberfraud couldn’t get worse, the SEC recently issued a Report of Investigation (more on that later) stating that nine recent corporate victims of cyberfraud may have compounded their...more
11/9/2018
/ Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Electronic Communications ,
Internal Controls ,
Publicly-Traded Companies ,
Risk Management ,
Securities and Exchange Commission (SEC) ,
Securities Exchange Act ,
Security and Privacy Controls ,
Spoofing
In late February, the SEC approved what it labeled “Guidance on Public Company Cybersecurity Disclosures.” And, sure enough, about three-quarters of its 24 pages focus on the various categories and locations of cybersecurity...more
The two-pronged mission of the Federal Trade Commission is to protect consumers and promote competition. According to the FTC’s website, protecting consumers includes “stopping unfair, deceptive or fraudulent practices in the...more
Cyberattacks against the country’s largest companies tend to garner the most press coverage and generate the most cybersecurity anxiety. For example, such high profile companies as eBay, JP Morgan, Home Depot and Target are...more
As boards of directors have become more focused on their fiduciary duties to oversee cybersecurity, new governance practices have begun to develop. For example, many companies have shifted cybersecurity oversight from the...more
The Cybersecurity Unit of the U.S. Department of Justice released in April its “Best Practices for Victim Response and Reporting of Cyber Incidents,” which it says reflects “lessons learned by federal prosecutors while...more
With each passing year, cybercrime moves further into the mainstream of public company existence. What until recently was mostly an annoying, abstract concern for a handful of companies is now a daily menace that impacts...more
A recent study by an independent research institute suggests that the increase in companies’ efforts to prepare for data breaches may not be keeping up with the increased risk. A September 2014 report by Ponemon Institute LLC...more
Due to the current proliferation of technology and electronic connectivity among various aspects of nearly every company’s business, cybersecurity risks continue to grow exponentially. However, the disclosure related to those...more