Cybersecurity guru Steve Gibson joins Leo Laporte every Tuesday. Steve and Leo break down the latest cybercrime and hacking stories, offering a deep understanding of what's happening and how to protect yourself and your business. Security Now is a must listen for security professionals every week. Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 20:30 UTC.
…
continue reading
Content provided by Attorney Laura Anthony. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Attorney Laura Anthony or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.
Similar to LawCast with Laura Anthony, Esq.
Join Larry Mantle weekdays for lively and in-depth discussions of Los Angeles and Southern California news, politics, science, entertainment, the arts and more. More AirTalk at www.kpcc.org.
…
continue reading
Wake-up with America's first news - Host Gordon Deal goes beyond the headlines with the day's first look at news and business news from the U.S. and around the world; bringing a lively blend of intelligent information, humor, and expert analysis to morning radio.
…
continue reading
The day's biggest news dissected by the day's newsmakers. Diverse opinions from across the political spectrum. The show that makes you decide, are you the Left, Right or the Centre?
…
continue reading
The latest in-depth coverage covering the intersection of technology and culture will help you make sense of a world in constant transformation. Join us as we explore the ways technology is changing our lives.
…
continue reading
Weekly wrap of events of the week peppered with context, commentary and opinion by a superstar panel. Click here to support Newslaundry: http://bit.ly/paytokeepnewsfree Hosted on Acast. See acast.com/privacy for more information.
…
continue reading
Every weekday, host Kai Ryssdal helps you make sense of the day’s business and economic news — no econ degree or finance background required. “Marketplace” takes you beyond the numbers, bringing you context. Our team of reporters all over the world speak with CEOs, policymakers and regular people just trying to get by.
…
continue reading
The UK Column is an independent news organisation analysing the information war.
…
continue reading
A monthly reality-check on the issues Americans care about most. Host Warren Olney draws on his decades of experience to explore the people and issues shaping – and disrupting - our world. How did everything change so fast? Where are we headed? The conversations are informal, edgy and always informative. If Warren's asking, you want to know the answer.
…
continue reading
Download This Show is your weekly guide to the world of media, culture, and technology. From social media to gadgets, streaming services to privacy issues. Each week Marc Fennell and a team of people far smarter than him (his words, not ours) take a fun deep dive into how technology is reshaping our lives.
…
continue reading
Player FM - Podcast App
Go offline with the Player FM app!
Go offline with the Player FM app!
))
The Disclosure of Cyber-Related Matters in a Company’s Business Description
Archived series ("Inactive feed" status)
When?
This feed was archived on May 19, 2020 04:08 (
Why? Inactive feed status. Our servers were unable to retrieve a valid podcast feed for a sustained period.
What now? You might be able to find a more up-to-date version using the search function. This series will no longer be checked for updates. If you believe this to be in error, please check if the publisher's feed link below is valid and contact support to request the feed be restored or if you have any other concerns about this.
Manage episode 193926975 series 1036962
Content provided by Attorney Laura Anthony. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Attorney Laura Anthony or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.
The Disclosure of Cyber-Related Matters in a Company’s Business Description- On October 13, 2011, the SEC issued a Disclosure Guidance related to cybersecurity risks and cyber incidents. Today I am continuing my discussion on that disclosure guidance.
Disclosure of cyber-related matters may be required in a company’s business description where they effect a company’s products, services, relationships with customers and suppliers or competitive conditions. Likewise, material litigation would need to be included in the “legal proceedings” section of a periodic report or registration statement.
Cyber-matters may need to be included in a company’s financial statements prior to, during and/or after an incident. Costs to prevent cyber-incidents are generally capitalized and included on the balance sheet as an asset. GAAP provides for specific recognition, measurement and classification treatment for the payment of incentives to customers or business relations, including after a cyber-attack. Cyber-incidents can also result in direct losses or the necessity to account for loss contingencies, including those related to warranties, breach of contract, product recall and replacement, indemnification or remediation. Furthermore, incidents can result in loss of, and therefore accounting impairment to, goodwill, intangible assets, trademarks, patents, capitalized software and even inventory.
To the extent that cyber-matters effect a company’s ability to record, process, summarize and report financial and other information in SEC filings, management will need to consider whether there is a reportable deficiency in disclosure controls and procedures.
The Yahoo hacking incident resulted in numerous media articles and blogs related to the disclosure of cyber-matters in SEC reports. One such blog was written by Kevin LaCroix and published in the D&O Diary. Mr. LaCroix’s blog points out that according to a September 19, 2016, Wall Street Journal article, cyber-attacks are occurring more frequently than ever but are rarely reported. The article cites a report that reviewed the filings of 9,000 public companies from 2010 to the present and found that only 95 of these companies had informed the SEC of a data breach.
As reported in a blog published by Debevoise and Plimpton, dated September 12, 2016, as pointed out by thecorporatecounsel.net, a review of Fortune 100 cyber-reporting practices revealed that most disclosures are contained in the risk-factor section of regular periodic reports such as Forms 10-Q and 10-K as opposed to interim disclosures in a Form 8-K. Moreover, only 20 incidents were reported at all in the period from January 2013 through the third quarter of 2015.
My opinion is that companies are relying on the materiality standard to avoid disclosure of cyber-incidents. Most public-company hacking involves large organizations that can reasonably make the judgment call that the incident and its effects are not material to investment decisions. However, with the current industry focus on cybersecurity, I think we will see a shift towards more disclosure. As mentioned, I also expect new SEC guidance on the topic in the near future.
248 episodes
Share
Archived series ("Inactive feed" status)
When?
This feed was archived on May 19, 2020 04:08 (
Why? Inactive feed status. Our servers were unable to retrieve a valid podcast feed for a sustained period.
What now? You might be able to find a more up-to-date version using the search function. This series will no longer be checked for updates. If you believe this to be in error, please check if the publisher's feed link below is valid and contact support to request the feed be restored or if you have any other concerns about this.
Manage episode 193926975 series 1036962
Content provided by Attorney Laura Anthony. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Attorney Laura Anthony or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.
The Disclosure of Cyber-Related Matters in a Company’s Business Description- On October 13, 2011, the SEC issued a Disclosure Guidance related to cybersecurity risks and cyber incidents. Today I am continuing my discussion on that disclosure guidance.
Disclosure of cyber-related matters may be required in a company’s business description where they effect a company’s products, services, relationships with customers and suppliers or competitive conditions. Likewise, material litigation would need to be included in the “legal proceedings” section of a periodic report or registration statement.
Cyber-matters may need to be included in a company’s financial statements prior to, during and/or after an incident. Costs to prevent cyber-incidents are generally capitalized and included on the balance sheet as an asset. GAAP provides for specific recognition, measurement and classification treatment for the payment of incentives to customers or business relations, including after a cyber-attack. Cyber-incidents can also result in direct losses or the necessity to account for loss contingencies, including those related to warranties, breach of contract, product recall and replacement, indemnification or remediation. Furthermore, incidents can result in loss of, and therefore accounting impairment to, goodwill, intangible assets, trademarks, patents, capitalized software and even inventory.
To the extent that cyber-matters effect a company’s ability to record, process, summarize and report financial and other information in SEC filings, management will need to consider whether there is a reportable deficiency in disclosure controls and procedures.
The Yahoo hacking incident resulted in numerous media articles and blogs related to the disclosure of cyber-matters in SEC reports. One such blog was written by Kevin LaCroix and published in the D&O Diary. Mr. LaCroix’s blog points out that according to a September 19, 2016, Wall Street Journal article, cyber-attacks are occurring more frequently than ever but are rarely reported. The article cites a report that reviewed the filings of 9,000 public companies from 2010 to the present and found that only 95 of these companies had informed the SEC of a data breach.
As reported in a blog published by Debevoise and Plimpton, dated September 12, 2016, as pointed out by thecorporatecounsel.net, a review of Fortune 100 cyber-reporting practices revealed that most disclosures are contained in the risk-factor section of regular periodic reports such as Forms 10-Q and 10-K as opposed to interim disclosures in a Form 8-K. Moreover, only 20 incidents were reported at all in the period from January 2013 through the third quarter of 2015.
My opinion is that companies are relying on the materiality standard to avoid disclosure of cyber-incidents. Most public-company hacking involves large organizations that can reasonably make the judgment call that the incident and its effects are not material to investment decisions. However, with the current industry focus on cybersecurity, I think we will see a shift towards more disclosure. As mentioned, I also expect new SEC guidance on the topic in the near future.
248 episodes
All episodes
×
Welcome to Player FM!
Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.
Similar to LawCast with Laura Anthony, Esq.
Cybersecurity guru Steve Gibson joins Leo Laporte every Tuesday. Steve and Leo break down the latest cybercrime and hacking stories, offering a deep understanding of what's happening and how to protect yourself and your business. Security Now is a must listen for security professionals every week. Records live every Tuesday at 4:30pm Eastern / 1:30pm Pacific / 20:30 UTC.
…
continue reading
Join Larry Mantle weekdays for lively and in-depth discussions of Los Angeles and Southern California news, politics, science, entertainment, the arts and more. More AirTalk at www.kpcc.org.
…
continue reading
Wake-up with America's first news - Host Gordon Deal goes beyond the headlines with the day's first look at news and business news from the U.S. and around the world; bringing a lively blend of intelligent information, humor, and expert analysis to morning radio.
…
continue reading
The day's biggest news dissected by the day's newsmakers. Diverse opinions from across the political spectrum. The show that makes you decide, are you the Left, Right or the Centre?
…
continue reading
The latest in-depth coverage covering the intersection of technology and culture will help you make sense of a world in constant transformation. Join us as we explore the ways technology is changing our lives.
…
continue reading
Weekly wrap of events of the week peppered with context, commentary and opinion by a superstar panel. Click here to support Newslaundry: http://bit.ly/paytokeepnewsfree Hosted on Acast. See acast.com/privacy for more information.
…
continue reading
Every weekday, host Kai Ryssdal helps you make sense of the day’s business and economic news — no econ degree or finance background required. “Marketplace” takes you beyond the numbers, bringing you context. Our team of reporters all over the world speak with CEOs, policymakers and regular people just trying to get by.
…
continue reading
The UK Column is an independent news organisation analysing the information war.
…
continue reading
A monthly reality-check on the issues Americans care about most. Host Warren Olney draws on his decades of experience to explore the people and issues shaping – and disrupting - our world. How did everything change so fast? Where are we headed? The conversations are informal, edgy and always informative. If Warren's asking, you want to know the answer.
…
continue reading
Download This Show is your weekly guide to the world of media, culture, and technology. From social media to gadgets, streaming services to privacy issues. Each week Marc Fennell and a team of people far smarter than him (his words, not ours) take a fun deep dive into how technology is reshaping our lives.
…
continue reading
Player FM - Podcast App
Go offline with the Player FM app!
Go offline with the Player FM app!
