US Securities and Exchange Commission (SEC) Security Incident
26/07/2023
789 days ago
Resolved
Incident Overview
Situation Description
The US Securities and Exchange Commission (SEC) adopted final rules mandating disclosure regarding cybersecurity risk management, strategy, governance, and incident reporting for public companies.
Event Types
Regulatory Enforcement
Industry Sector
GovernmentGeographic Scope
National (US)Response Actions
Fulfilled Formal Breach Disclosure Obligations
Revised Incident Response Plan
Impact Analysis
Event Types (1 identified)
Regulatory Enforcement
Financial Impact
$0 USDRecords Affected
0Primary Impacts
Reputational Damage
Legal/Regulatory Penalties
Key Decisions Made
Public companies must report certain details of a cybersecurity incident within four days of determining it is material.; Companies must provide expanded standardized cybersecurity-related disclosures and assessments in annual reports.; New Item 1.05 to Form 8-K requires disclosure of material cybersecurity incidents.
Technical Analysis
Attack Method
Unknown
Additional Information
Quick Facts
- Company:
- US Securities and Exchange Commission (SEC)
- Date:
- 26/07/2023
- Status:
- Resolved
- Decision Maker:
- US Securities and Exchange Commission (SEC)
- Position:
- nan
- Published:
- 1/08/2023
Source Information
Original Query
analysis of SEC Form 8-K Item 1.05 disclosures for material cybersecurity incidentsTimeline
Information Published
1/08/2023
Incident Occurred
26/07/2023 (789 days ago)
Status: Resolved
Estimated resolution based on age