With increased attention to how securities laws may apply to digital token sales and the disruptive nature of increased cyber threats to the investor community, the Securities Exchange Commission (“SEC”) last week announced two new initiatives. The SEC’s press release, found here, outlined the creation of the Cyber Unit (“Unit”) and the Retail Strategy Task Force (“RSTF”).
According to the press release the Unit will focus the Enforcement Division’s substantial cyber-related expertise on targeting cyber-related misconduct, including: (more…)
Just about every survey of General Counsels reveals the same #1 culprit of sleepless nights….. a cybersecurity hack. If you run a business in today’s global environment, it is hard to escape the fundamental reality that it is more than likely a matter of when, not if, you will face a cyber threat. And depending on the nature of your business, that threat can have a wide range of implications. If you are a public company, there is an additional issue to consider… what do you have to disclose to your investors and shareholders?
Being prepared for a hack with a comprehensive written information security plan and an equally robust incident response plan is just one component to be considered if you are a public company. You must also have a plan to meet your reporting and disclosure obligations to a variety of governmental bodies. While measuring your response needs in the wake of a hack, and determining if there are state, federal or international laws and regulations that require reporting, you must also pay close attention to possible disclosure obligations in your SEC filings. Specifically, if you have tripped a disclosure to a state attorney general or your company’s customers, then it is possible you may also have a disclosure obligation to your shareholders. (more…)