Cybersecurity Incident Archives - Securities Law Blog

SEC Division Of Corporation Finance Statement On Disclosure Review

On June 24, 2024, Erik Gerding the Director of the SEC’s Division of Corporation Finance made a statement regarding the SEC’s state of disclosure review. In fiscal year 2023 and continuing into 2024, the top areas of review and comment by the SEC were China-related matters, artificial intelligence, non-GAAP disclosures, management’s discussion and analysis, revenue recognition and financial statement presentation. In addition, disruptions in the banking industry, cybersecurity risks, the impact of inflation and disclosure related to or as a result of newly adopted rules (such as pay versus performance) are gaining attention by SEC review teams.

The director’s statement gives some insight into the SEC’s focus and serves as a reminder to our clients and us practitioners alike to be sure we are staying abreast of the ever-changing capital markets environment.

China Related Disclosures

A few years ago, the SEC enacted the Holding Foreign Companies Accountable Act and approved rules implementing same (see HERE). The SEC continues to

August 6, 2024

SEC Publishes More New C&DI On Cybersecurity Rules

On June 24, 2024 the SEC published five (5) new compliance and disclosure interpretations (C&DI) on cybersecurity incident disclosures supplementing the C&DI published in December 2023 (see HERE).

Cybersecurity

In July, 2023 the SEC adopted final new rules requiring disclosures for both domestic and foreign companies related to cybersecurity incidents, risk management, strategy and governance (see HERE for a review of the new rules).

The cybersecurity rules add new Item 1.05 to Form 8-K requiring disclosure of a material cybersecurity incident including the incident’s nature, scope, timing, and material impact or reasonably likely impact on the company. An Item 1.05 Form 8-K is due within four business days following determination that a cybersecurity incident is material. Given the sensitive nature of cybersecurity crimes, the SEC has added a provision allowing an 8-K to be delayed if it is informed by the United States Attorney General, in writing, that immediate disclosure would pose a substantial risk to national security or

July 30, 2024

1700 Palm Beach Lakes Blvd, Suite 820

(800) 341-2684

Contact us

MAKE VALUED ALLIANCES

Cybersecurity Incident

SEC Division Of Corporation Finance Statement On Disclosure Review

SEC Publishes More New C&DI On Cybersecurity Rules

Categories

Contact Information

Recent Posts

Terminating Reporting Obligations In An Abandoned IPO

NYSE Approves Change To Delist Companies That Change Primary Business

Supreme Court Strikes Down Chevron Deference

Commissioner Uyeda’s Statement On Dealer Litigation

Legal Resources

Tweets

DEVELOPED AND MANAGED BY

Featured On

Contact Author

Have a Question for Laura Anthony?