SEC Security Incident
26/07/2023
789 days ago
Resolved
Incident Overview
Situation Description
The SEC issued clarification on the disclosure of material cybersecurity incidents by reporting companies following new rules adopted on July 26, 2023.
Event Types
Regulatory Enforcement
Industry Sector
GovernmentGeographic Scope
GlobalResponse Actions
Fulfilled Formal Breach Disclosure Obligations
Managed Public Narrative & Crisis Communications
Impact Analysis
Event Types (1 identified)
Regulatory Enforcement
Financial Impact
$0 USDRecords Affected
0Data Types Compromised
N/A
Primary Impacts
Reputational Damage
Legal/Regulatory Penalties
Key Decisions Made
Reporting companies are required to disclose material cybersecurity incidents under Item 1.05 of Form 8-K upon determining materiality.; Voluntary disclosure of non-material cybersecurity incidents or those still under materiality assessment should be made under a different item of Form 8-K, such as Item 8.01, to avoid investor confusion.; If a reporting company initially discloses an incident under Item 8.01 and later determines it is material, it must file an Item 1.05 Form 8-K within four business days of the determination.
Technical Analysis
Attack Method
Unknown
Additional Information
Quick Facts
- Company:
- SEC
- Date:
- 26/07/2023
- Status:
- Resolved
- Decision Maker:
- Erik Gerding
- Position:
- Director of the SECs Division of Corporation Finance
- Published:
- 3/06/2024
Source Information
Original Query
examples of company Form 8-K filings for "material cybersecurity incidents" since 2024 SEC ruleTimeline
Information Published
3/06/2024
Incident Occurred
26/07/2023 (789 days ago)
Status: Resolved
Estimated resolution based on age