After a cyber attack, many companies prefer to remain as secretive as the hackers themselves—providing very little information about the breach and even hiding it from regulators and the public.
That silence, say online security experts, can lead to other companies falling prey to similar attacks or cause them to underestimate the risks. Worse, it can keep regulators in the dark about dangerous threats to critical national infrastructure, such as nuclear power plants and communications systems.
