AXIOS December 10, 2024
Sam Sabin

Most publicly traded companies aren’t sharing enough detail with investors about the cyber incidents that affect their business.

Why it matters: One year later, the Securities and Exchange Commission’s cyber disclosure rules appear to be failing to solve the transparency problems they were supposed to fix.

By the numbers: Only 16.9% of public 8-K filings disclosing a cyber incident provided specific details about the material impact it had on the company’s business, according to a report from BreachRx released Tuesday.

  • The report, shared exclusively with Axios, also showed that only 48% of 8-K filings provided any specifics about how the organization was responding to an ongoing incident.
  • The other 52% of filings shared only the same, vague boilerplate language...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Technology
Related Articles:
Notorious Ransomware Gang Warns New Attacks Incoming On Feb. 3, 2025
7 of the biggest healthcare cyberattack and breach stories of 2024
‘Orgs need to be ready’: AI risks and rewards for cybersecurity in 2025
Healthcare cybersecurity in 2025: 3 things to know
Another House bill aims to protect against hospital cyberattacks

Share This Article