On July 26, 2023, the Securities and Exchange Commission (“SEC”), by a 3-2 vote, approved new disclosure rules designed to enhance and standardize disclosures regarding cybersecurity risk management, strategy, governance, and incidents by public companies that are subject to the reporting requirements of the Securities Exchange Act of 1934.…

Data mining, once considered the new frontier in technology, is now fiercely criticized due to the risk of breach, manipulation, and misuse. So does this mark the beginning of the end for data mining? Probably not. In an era in which data is often a company’s most valuable asset, it…

In the wake of recent notable data breaches, the United States Securities and Exchange Commission issued an interpretive release designed to improve the timeliness and accuracy of public companies’ disclosures of cybersecurity risks and incidents and prevent insider trading.  The SEC’s guidance release and this post raise several issues and concerns that all companies, regardless of size and ownership, need to take seriously to improve their cybersecurity planning and legal compliance.