The Securities and Exchange Commission recently published guidance on when and how registered corporations should disclose data security and cyber attack events in their filings. Prior to this guidance, disclosures of such incidents by registered companies were spotty at best, suggesting that most public companies will need to take steps to ensure they are taking this guidance into account. ..

Related Practice