New SEC rule requires public companies to disclose cybersecurity breaches in 4 days

  • 📰 wjxt4
  • ⏱ Reading Time:
  • 42 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 20%
  • Publisher: 63%

Indonesia Berita Berita

Indonesia Berita Terbaru,Indonesia Berita utama

The new rules, passed by a 3-2 vote, also require publicly traded companies to annually disclose information on their cybersecurity risk management and executive expertise in the field. The idea is to protect investors.

FILE - The seal of the U.S. Securities and Exchange Commission at SEC headquarters, June 19, 2015, in Washington. The SEC adopted rules Wednesday, July 26, 2023, to require public companies to disclose within four days all cybersecurity breaches that could affect their bottom lines. Delays will be permitted if immediate disclosure poses serious national security or public safety risks.

“Whether a company loses a factory in a fire — or millions of files in a cybersecurity incident — it may be material to investors,” SEC Chair Gary Gensler said in a statement, noting the current inconsistency in disclosures. Technically, the clock doesn't start ticking on the four-day window for reporting until companies have determined a breach is material.the new requirements overstep the SEC's authority and “seem designed to better meet the needs of would-be hackers” - who could benefit from detailed info on how companies manage cyberrisk.

The rules were first proposed in March 2022, when the SEC determined that breaches of corporate networks posed an escalating risk as their digitization of operations and remote work increased — and the cost to investors from cybersecurity incidents rose.

Berita ini telah kami rangkum agar Anda dapat membacanya dengan cepat. Jika Anda tertarik dengan beritanya, Anda dapat membaca teks lengkapnya di sini. Baca lebih lajut:

 /  🏆 246. in İD
 

Terima kasih atas komentar Anda. Komentar Anda akan dipublikasikan setelah ditinjau.

Indonesia Berita Terbaru, Indonesia Berita utama