Government Cracks Down on Security Responses, Unpatched Vulns
December 6, 2023 Alex Woodie
New federal rules that go into effect next week require public companies to share information about past security incidents within four days of the event, as well as detail in annual reports how they’re preparing for future attacks. And a state prosecutor in New York fined a company for allowing hackers to steal customer data through a critical zero-day security vulnerability that was left unpatched for 11 months.
The Securities and Exchange Commission (SEC)’s new cybersecurity rule that went into effect on October 1 requires public companies to report details of cybersecurity incidents that impact their operations. Companies must report …
Read more