New SEC Guidance May Impact Corporate Disclosure
As companies begin submitting their regulatory filings and financial reports from 2011, the SEC is pushing for more comprehensive data breach, cyber attack, and general risk-assessment disclosures.
As it stands, companies not only downplay the severity of hacking and other Internet-borne threats in their risk-assessments to the investor public, but they’ve also shown reluctance in disclosing and similarly downplayed attacks that have already occurred.
