In July 2023, the U.S. Securities & Exchange Commission (SEC) introduced new rules on the disclosure of cybersecurity incidents and cyber risk management by publicly traded companies. Companies must disclose material cybersecurity incidents in 8-K reports and describe processes for managing cyber threats in 10-K reports. However, determining the ‘materiality’ of an incident can be challenging. The rules come into effect in December 2023, but smaller companies and foreign private issuers have later deadlines. Non-disclosure of specific technical data is permitted when deemed necessary for national security or public safety.
Scenes from a “No Kings” Protest, 10-18-25
The following are just a few of the pictures I took today at a “No Kings” protest held in Nassau County, New York. It was
