SEC adopts rule requiring cyber incident disclosures within four days
By 
Kyle Brasseur2023-07-26T16:30:00
The Securities and Exchange Commission (SEC) on Wednesday finalized its controversial rule requiring public companies to disclose the nature, scope, timing, and impact of cybersecurity incidents deemed to be material within four business days.
The rule, proposed in March 2022, has received significant attention in the past year for the relatively short timeline it provides businesses to grasp the extent of a cybersecurity incident such as a data breach. Also short will be its compliance date, as large companies as soon as December could be required to begin making the new disclosures.
Smaller reporting companies will receive an additional 180 days to comply.
Related articles
-
News BriefDOJ sets expectations for SEC cyber incident disclosure delays
Companies won’t have an easy path toward earning additional time from the Department of Justice regarding the disclosure of a material cybersecurity incident to the Securities and Exchange Commission as required under a new rule.
-
News BriefBlackbaud settles with states for $49.5M over 2020 data breach
Software company Blackbaud agreed to pay $49.5 million in a multistate settlement addressing charges related to a 2020 cyberattack that exposed the personal data of approximately 13,000 consumers.
-
PremiumCovington mulling appeal of ruling in SEC breached client case
Covington & Burling is leaving open the possibility of appealing a recent federal court order requiring the law firm to provide the names of hacked clients to the Securities and Exchange Commission.
More from Regulatory Policy
-
News BriefFHFA chief orders Fannie and Freddie to consider crypto assets in mortgage assessments
In another sign of President Donald Trump’s focus on cryptocurrency, the head of the U.S. Federal Housing Finance Agency (FHFA) ordered Fannie Mae and Freddie Mac to create proposals to consider crypto assets for a single-family home mortgage.
-
ArticleEU, UK agree to reset rules on agrifoods, mergers and carbon trading as part of post-Brexit reset
Four years after Brexit, the U.K. and EU announced a “reset” that will ease barriers to importing and exporting food, drink, and agricultural produce. It may also harmonize rules around carbon emissions trading systems, simplifying compliance for multinational organizations that are large emitters, and enable more young people to gain ...
-
News BriefSenate confirms Olivia Trusty to FCC, handing Trump majority control
The U.S. Senate confirmed Olivia Trusty as commissioner for the Federal Communications Commission on Tuesday, marking a shift in agency staffing that gave commissioners nominated by President Donald Trump a majority of decision-making power. The move followed resignations of two commissioners earlier this month, each of whom had been nominated ...