{"id":44178,"date":"2021-11-29T17:33:11","date_gmt":"2021-11-29T17:33:11","guid":{"rendered":"https:\/\/packetstormsecurity.com\/news\/view\/32861\/What-The-SEC-Requires-From-Businesses-After-A-Data-Breach.html"},"modified":"2021-11-29T17:33:11","modified_gmt":"2021-11-29T17:33:11","slug":"what-the-sec-requires-from-businesses-after-a-data-breach","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/what-the-sec-requires-from-businesses-after-a-data-breach\/","title":{"rendered":"What The SEC Requires From Businesses After A Data Breach"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/securityintelligence.com\/wp-content\/uploads\/2021\/11\/Interracial-business-team-meeting-smile-and-brainstorm.jpeg\" class=\"ff-og-image-inserted\"><\/div>\n<p><head> <meta charset=\"UTF-8\"> <link rel=\"shortcut icon\" type=\"image\/x-icon\" href=\"https:\/\/securityintelligence.com\/wp-content\/themes\/sapphire\/images\/favicon.ico\" sizes=\"32x32\"> <meta name=\"viewport\" content=\"width=device-width,minimum-scale=1,initial-scale=1,maximum-scale=1\"> <!-- DEFINITIONS --> <title>What the SEC Requires From Businesses After a Data Breach<\/title> <meta name=\"description\" content=\"Find the latest security analysis and insight from top IT security experts and leaders, made exclusively for security professionals and CISOs.\"> <!-- THEME COLOR --> <meta name=\"theme-color\" content=\"#000000\"> <!-- REFERRER POLICY --> <meta name=\"referrer\" content=\"no-referrer-when-downgrade\"> <!-- LANGUAGE\/TRANSLATIONS --> <!-- AMP SCRIPTS --> <link rel=\"preload\" as=\"image\" href=\"\/wp-content\/webp-express\/webp-images\/doc-root\/wp-content\/uploads\/2021\/11\/Interracial-business-team-meeting-smile-and-brainstorm-300x158.jpeg.webp\" media=\"(max-width: 300px)\"> <link rel=\"preload\" as=\"image\" href=\"\/wp-content\/webp-express\/webp-images\/doc-root\/wp-content\/uploads\/2021\/11\/Interracial-business-team-meeting-smile-and-brainstorm-630x330.jpeg.webp\" media=\"(max-width: 1200px) and (min-width: 301px)\"> <link rel=\"preload\" as=\"image\" href=\"\/wp-content\/webp-express\/webp-images\/doc-root\/wp-content\/uploads\/2021\/11\/Interracial-business-team-meeting-smile-and-brainstorm.jpeg.webp\" media=\"(max-width: 2400px) and (min-width: 631px)\"> <link rel=\"preload\" as=\"image\" href=\"\/wp-content\/webp-express\/webp-images\/doc-root\/wp-content\/uploads\/2021\/11\/Interracial-business-team-meeting-smile-and-brainstorm.jpeg.webp\" media=\"(max-width: 2400px) and (min-width: 1201px)\"> <!-- FONTS --> <!-- <link rel=\"preload\" href=\"https:\/\/fonts.googleapis.com\/css?family=IBM+Plex+Sans+Condensed:300,400,500|IBM+Plex+Sans:300,400,500&display=swap\" rel=\"stylesheet\"> --> <!-- ANALYTICS --> <!-- COREMETRICS --> <!-- AMP DEFAULT CSS --> <noscript><\/noscript> <link rel=\"stylesheet\" href=\"https:\/\/securityintelligence.com\/wp-content\/themes\/sapphire\/minifications\/modules.css?v=1620050441\"> <!-- CUSTOM CSS --> <meta name=\"robots\" content=\"max-image-preview:large\">\n<link rel=\"dns-prefetch\" href=\"\/\/www.googletagmanager.com\">\n<link rel=\"dns-prefetch\" href=\"\/\/s.w.org\"> <link rel=\"stylesheet\" id=\"wp-block-library-css\" href=\"https:\/\/securityintelligence.com\/wp-includes\/css\/dist\/block-library\/style.min.css?ver=5.8.2\" type=\"text\/css\" media=\"all\">\n<link rel=\"stylesheet\" id=\"contact-form-7-css\" href=\"https:\/\/securityintelligence.com\/wp-content\/plugins\/contact-form-7\/includes\/css\/styles.css?ver=5.5.2\" type=\"text\/css\" media=\"all\">\n<link rel=\"stylesheet\" id=\"taxonomy-image-plugin-public-css\" href=\"https:\/\/securityintelligence.com\/wp-content\/plugins\/taxonomy-images\/css\/style.css?ver=0.9.6\" type=\"text\/css\" media=\"screen\"> <!-- Google Analytics snippet added by Site Kit --> <!-- End Google Analytics snippet added by Site Kit -->\n<link rel=\"https:\/\/api.w.org\/\" href=\"https:\/\/securityintelligence.com\/wp-json\/\"><link rel=\"alternate\" type=\"application\/json\" href=\"https:\/\/securityintelligence.com\/wp-json\/wp\/v2\/posts\/432936\"><link rel=\"EditURI\" type=\"application\/rsd+xml\" title=\"RSD\" href=\"https:\/\/securityintelligence.com\/xmlrpc.php?rsd\">\n<link rel=\"wlwmanifest\" type=\"application\/wlwmanifest+xml\" href=\"https:\/\/securityintelligence.com\/wp-includes\/wlwmanifest.xml\"> <meta name=\"generator\" content=\"WordPress 5.8.2\">\n<link rel=\"shortlink\" href=\"https:\/\/securityintelligence.com\/?p=432936\">\n<link rel=\"alternate\" type=\"application\/json+oembed\" href=\"https:\/\/securityintelligence.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fsecurityintelligence.com%2Fsec-business-data-breach%2F\">\n<link rel=\"alternate\" type=\"text\/xml+oembed\" href=\"https:\/\/securityintelligence.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fsecurityintelligence.com%2Fsec-business-data-breach%2F&amp;format=xml\">\n<meta name=\"generator\" content=\"Site Kit by Google 1.45.0\"><link rel=\"icon\" href=\"https:\/\/securityintelligence.com\/wp-content\/uploads\/2016\/04\/SI_primary_rgb-80x80.png\" sizes=\"32x32\">\n<link rel=\"icon\" href=\"https:\/\/securityintelligence.com\/wp-content\/uploads\/2016\/04\/SI_primary_rgb.png\" sizes=\"192x192\">\n<link rel=\"apple-touch-icon\" href=\"https:\/\/securityintelligence.com\/wp-content\/uploads\/2016\/04\/SI_primary_rgb.png\">\n<meta name=\"msapplication-TileImage\" content=\"https:\/\/securityintelligence.com\/wp-content\/uploads\/2016\/04\/SI_primary_rgb.png\">\n<link rel=\"stylesheet\" href=\"https:\/\/unpkg.com\/swiper\/swiper-bundle.min.css\"><link rel=\"stylesheet\" href=\"https:\/\/securityintelligence.com\/wp-content\/themes\/sapphire\/minifications\/single.css?v=1636051889\"> <!-- YOAST SEO --> <!-- This site is optimized with the Yoast SEO Premium plugin v13.1 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ --><br \/>\n<meta name=\"description\" content=\"If a data breach hits your company, the U.S. Securities and Exchange Commission may need to know about it. See what they require when it comes to security.\"><br \/>\n<meta name=\"robots\" content=\"max-snippet:-1, max-image-preview:large, max-video-preview:-1\">\n<link rel=\"canonical\" href=\"https:\/\/securityintelligence.com\/sec-business-data-breach\/\">\n<meta property=\"og:locale\" content=\"en_US\"><br \/>\n<meta property=\"og:type\" content=\"article\"><br \/>\n<meta property=\"og:title\" content=\"What the SEC Requires From Businesses After a Data Breach\"><br \/>\n<meta property=\"og:description\" content=\"If a data breach hits your company, the U.S. Securities and Exchange Commission may need to know about it. See what they require when it comes to security.\"><br \/>\n<meta property=\"og:url\" content=\"https:\/\/securityintelligence.com\/sec-business-data-breach\/\"><br \/>\n<meta property=\"og:site_name\" content=\"Security Intelligence\"><br \/>\n<meta property=\"article:tag\" content=\"data breach response\"><br \/>\n<meta property=\"article:tag\" content=\"Big Data Security\"><br \/>\n<meta property=\"article:tag\" content=\"Cost of a Data Breach\"><br \/>\n<meta property=\"article:tag\" content=\"Data Breach\"><br \/>\n<meta property=\"article:tag\" content=\"Data Security\"><br \/>\n<meta property=\"article:tag\" content=\"Vulnerabilities\"><br \/>\n<meta property=\"article:tag\" content=\"Vulnerability\"><br \/>\n<meta property=\"article:section\" content=\"Data Protection\"><br \/>\n<meta property=\"article:published_time\" content=\"2021-11-29T14:00:00+00:00\"><br \/>\n<meta property=\"article:modified_time\" content=\"2021-11-29T15:54:42+00:00\"><br \/>\n<meta property=\"og:updated_time\" content=\"2021-11-29T15:54:42+00:00\"><br \/>\n<meta property=\"fb:app_id\" content=\"3703311399714818\"><br \/>\n<meta property=\"og:image\" content=\"https:\/\/securityintelligence.com\/wp-content\/uploads\/2021\/11\/Interracial-business-team-meeting-smile-and-brainstorm.jpeg\"><br \/>\n<meta property=\"og:image:secure_url\" content=\"https:\/\/securityintelligence.com\/wp-content\/uploads\/2021\/11\/Interracial-business-team-meeting-smile-and-brainstorm.jpeg\"><br \/>\n<meta property=\"og:image:width\" content=\"1200\"><br \/>\n<meta property=\"og:image:height\" content=\"630\"><br \/>\n<meta name=\"twitter:card\" content=\"summary\"><br \/>\n<meta name=\"twitter:description\" content=\"If a data breach hits your company, the U.S. Securities and Exchange Commission may need to know about it. See what they require when it comes to security.\"><br \/>\n<meta name=\"twitter:title\" content=\"What the SEC Requires From Businesses After a Data Breach\"><br \/>\n<meta name=\"twitter:image\" content=\"https:\/\/securityintelligence.com\/wp-content\/uploads\/2021\/11\/Interracial-business-team-meeting-smile-and-brainstorm.jpeg\"> <!-- \/ Yoast SEO Premium plugin. --> <\/head><body id=\"readabilityBody\"><br \/>\n<!-- NAVIGATION --><\/p>\n<nav id=\"navigation\" class=\"navigation navigation--homepage \" aria-label=\"Security Intelligence\"> <\/nav>\n<p> <!-- BACK TO TOP --> <!-- CHECK PAGE POSITION --><br \/>\n<amp-position-observer target=\"top-viewer\" intersection-ratios=\"0\" on=\"enter:hideAnim.start; exit:showAnim.start\" layout=\"nodisplay\"><\/amp-position-observer> <!-- PROGRESS BAR --> <amp-position-observer target=\"single__height-calc\" intersection-ratios=\"0\" viewport-margins=\"25vh 75vh\" on=\"scroll:progress-animation.seekTo(percent=event.percent)\" layout=\"nodisplay\"><\/amp-position-observer> <!-- COUNT PAGE VIEWS --> <\/p>\n<pre><\/pre>\n<p> <!-- MAIN --> <main> <\/p>\n<div class=\"container\">\n<div class=\"row\"> <!-- SCHEMA --> <!-- ARTICLE --> <\/p>\n<article class=\"single\">\n<div class=\"row\"> <!-- HEADER --> <!-- SOCIAL ICONS --> <!-- SINGLE --> <\/p>\n<div id=\"single__content\" class=\"single__content \"> <!-- TRANSLATION --> <!-- CONTENT --> <\/p>\n<div class=\"single__content-itself\" id=\"single__height-calc\"> <html readability=\"59.828025477707\"><body readability=\"119.65605095541\"><\/p>\n<p>Consumers have become wary of data breaches and the decreased safety of their personal information. However, the cost of a data breach is no longer only a matter of money and your company\u2019s good name. There is now a third critical reason to pay attention: the U.S. Securities and Exchange Commission \u2014 more commonly referred to as the SEC.<\/p>\n<p>The SEC has begun to take aim at the business practices that can lead to breaches. So, what does the SEC\u2019s involvement mean for cybersecurity professionals?<\/p>\n<h2>Why Is the SEC Involved in Data Breach Response?<\/h2>\n<p>You might think about the SEC in terms of stocks and the stock market. But it has a three-part mission: protect investors, facilitate capital formation and maintain fair, orderly and efficient markets.<\/p>\n<p>To protect investors, the SEC works to make sure consumers are not investing their hard-earned money in a company\u2019s stock based on false or misleading information. That might mean looking into falsified earning reports, but it also goes much deeper.<\/p>\n<p>The SEC aims for transparency. So, they require each business to disclose all types of risk that can affect the company\u2019s earnings and, in the end, the stock price. This process increases the odds that an investor has access to all the information about a company\u2019s financial health.<\/p>\n<p>The possible risks encompass much more than fraud; they can include everything from supply chain issues to natural disasters. The purpose is to share anything and everything that could possibly affect the financial future of the company.<\/p>\n<p>This leads us right to the answer about why the SEC cares about cybersecurity. When a company faces a cybersecurity attack or event, it affects its revenue. According to the <a href=\"https:\/\/www.ibm.com\/security\/data-breach\">IBM Cost of a Data Breach Report 2021<\/a>, the average cost of a ransomware attack (the costliest type of breach) is $4.62 million. And the average cost of the least costly type of data breach (breaches in hybrid cloud environments) is still very expensive, at $3.61 million.<\/p>\n<h2>What This Means for Revenue<\/h2>\n<p>This means cybersecurity practices play a large part in a company\u2019s revenue. Even minor breaches result in severe losses. Most consumers never consider cybersecurity when deciding where to invest their money.<\/p>\n<p>Very few cybersecurity issues develop because of a single poor decision or mistake. Instead, there are multiple choices and factors that lead to the vulnerabilities that allow a breach to happen.<\/p>\n<p>The issue concerns the SEC because when an organization faces a major incident, the price of that company\u2019s stock almost always goes down. But consumers don\u2019t have cybersecurity-related information when they purchase company stock. So, they are making those purchasing decisions without key information. That can make their investment much riskier than they realize.<\/p>\n<p>Why now? It\u2019s simple. The costs of breaches are going up, which means the risk to investors is increasing.<\/p>\n<p>The <a href=\"https:\/\/securityintelligence.com\/posts\/whats-new-2021-cost-of-a-data-breach-report\/\">IBM Cost of a Data Breach Report 2021<\/a> found the cost of a breach increased 10% between 2020 and 2021. As you might expect, the increased number of people working from home was a factor. Breaches involving remote work cost $1.07 million more than other breaches.<\/p>\n<p>Reputation is a bit harder to quantify. But the fact that 38% of the cost of a breach comes from lost business is notable.<\/p>\n<h2>What Is the SEC Doing About Cybersecurity Risks and Incidents?<\/h2>\n<p>The SEC is leveraging fines to companies with poor cybersecurity practices more and more.<\/p>\n<p>In July 2021, the <a href=\"https:\/\/www.sec.gov\/news\/press-release\/2021-154\" target=\"_blank\" rel=\"noopener nofollow\">SEC settled with Pearson Plc<\/a>, a London-based public educational publishing company. Pearson agreed to pay $1 million in response to charges of misleading investors regarding a 2018 breach, which involved the theft of millions of student records, including dates of birth and email addresses. The SEC\u2019s stance was that Pearson did not have good enough disclosure controls and procedures.<\/p>\n<p>And Pearson isn\u2019t the only case like this. In August 2021, the SEC announced <a href=\"https:\/\/www.sec.gov\/news\/press-release\/2021-169\" target=\"_blank\" rel=\"noopener nofollow\">actions against eight financial firms<\/a> for failures in their cybersecurity procedures and policies. Each of the companies had email account takeovers that caused exposure of client personal information, and the settlements ranged between $200,000 and $300,000 for each company. Experts agree that these are likely just the beginning. They are a signal that the SEC is now focusing on the risks cybersecurity issues pose to investors.<\/p>\n<h2>How to Avoid SEC Fines After a Data Breach<\/h2>\n<p><a href=\"https:\/\/hbr.org\/2021\/09\/the-sec-is-serious-about-cybersecurity-is-your-company\" target=\"_blank\" rel=\"noopener nofollow\">Harvard Business Review\u2019s article on this subject<\/a> is right on the money. First, create a committee for disclosure to conduct quarterly surveys to uncover everything that needs to be disclosed.<\/p>\n<p>Secondly, disclose early. In a past case, the SEC ruled that six months was too long. Companies should take action as soon as possible. Along those lines, HBR gave further guidance that companies should disclose they understand the full scope of the breach.<\/p>\n<p>The final two suggestions \u2014 conduct forensic assessments and build visibility into your assets \u2014 provide practical advice. They can guide you to create a process that makes it easy to quickly and accurately disclose cybersecurity issues.<\/p>\n<h2>Let the SEC\u2019s Data Breach Response Increase Your Cybersecurity Funding<\/h2>\n<p>Chief information security officers often ask me how they can <a href=\"https:\/\/securityintelligence.com\/articles\/ciso-achieve-better-working-relations\/\">show their company\u2019s leaders<\/a> how important cybersecurity is. And this SEC news is an outstanding proof point. It\u2019s a great illustration of how cybersecurity incidents cost reputation and money. Plus, no one wants to get fined by the SEC. It\u2019s just not a good look.<\/p>\n<p>Before your next budgeting meeting, set up time to meet with your company leaders. Bring copies of recent SEC sanctions and a list of potential vulnerabilities in your own company. Start with sharing the SEC\u2019s recent actions. Next, make the case for areas that could cause your company the same fate. Then tie it right back to your budget. Show how investments in cybersecurity can help prevent your organization from becoming the SEC\u2019s next target.<\/p>\n<p>You\u2019ve known for years, if not decades, the importance of cybersecurity to your company. And while at first glance it appears the SEC news is bad for the industry, it\u2019s actually the opposite. It\u2019s even more proof that your company\u2019s success and future depend on taking effective and proactive cybersecurity measures now.<\/p>\n<p><\/body> <\/html><\/div>\n<p> <!-- LISTICLES --> <!-- CONTINUE READING --> <!-- SOCIAL BAR --> <!-- TAGS --> <!-- AUTHOR --> <\/p>\n<div class=\"author-box\" readability=\"6.5985576923077\"> <a href=\"https:\/\/securityintelligence.com\/author\/jennifer-gregory\/\" class=\"author-box__name\">Jennifer Gregory<\/a> <\/p>\n<p>Cybersecurity Writer<\/p>\n<div class=\"author-box__description\" readability=\"9.4705882352941\">\n<p>Jennifer Goforth Gregory is a freelance B2B technology content marketing writer specializing in cybersecurity. Other areas of focus include B2B, finance, tec&#8230; <br \/><a href=\"https:\/\/securityintelligence.com\/author\/jennifer-gregory\/\" title=\"Read More\">read more<\/a><\/p>\n<\/div>\n<\/div><\/div>\n<\/p><\/div>\n<p> <!-- MOBILE ADVERTISING --> <\/p>\n<section class=\"single__mobile-ad\"> <\/section>\n<\/article>\n<p> <!-- SIDEBAR --> <\/div>\n<\/p><\/div>\n<p> <\/main> <!-- RELATED POSTS --> <\/p>\n<section class=\"related\">\n<div class=\"container\">\n<div class=\"row\" readability=\"3.340206185567\"> <!-- TITLE --> <\/p>\n<header class=\"title\" readability=\"2\">\n<p>More from Data Protection<\/p>\n<\/header>\n<p> <!-- CARDS --> <\/div>\n<\/p><\/div>\n<\/section>\n<p> <!-- FOOTER SCRIPTS --> <\/body> READ MORE <a href=\"https:\/\/packetstormsecurity.com\/news\/view\/32861\/What-The-SEC-Requires-From-Businesses-After-A-Data-Breach.html\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":44179,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[277],"tags":[2224],"class_list":["post-44178","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity-blogs","tag-headlinehackergovernmentprivacyusadata-loss"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v28.0 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>What The SEC Requires From Businesses After A Data Breach 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/what-the-sec-requires-from-businesses-after-a-data-breach\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"What The SEC Requires From Businesses After A Data Breach 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/what-the-sec-requires-from-businesses-after-a-data-breach\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2021-11-29T17:33:11+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/securityintelligence.com\/wp-content\/uploads\/2021\/11\/Interracial-business-team-meeting-smile-and-brainstorm.jpeg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-the-sec-requires-from-businesses-after-a-data-breach\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-the-sec-requires-from-businesses-after-a-data-breach\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"What The SEC Requires From Businesses After A Data Breach\",\"datePublished\":\"2021-11-29T17:33:11+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-the-sec-requires-from-businesses-after-a-data-breach\\\/\"},\"wordCount\":1079,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-the-sec-requires-from-businesses-after-a-data-breach\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2021\\\/11\\\/what-the-sec-requires-from-businesses-after-a-data-breach.jpg\",\"keywords\":[\"headline,hacker,government,privacy,usa,data loss\"],\"articleSection\":[\"CyberSecurity Blogs\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-the-sec-requires-from-businesses-after-a-data-breach\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-the-sec-requires-from-businesses-after-a-data-breach\\\/\",\"name\":\"What The SEC Requires From Businesses After A Data Breach 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-the-sec-requires-from-businesses-after-a-data-breach\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-the-sec-requires-from-businesses-after-a-data-breach\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2021\\\/11\\\/what-the-sec-requires-from-businesses-after-a-data-breach.jpg\",\"datePublished\":\"2021-11-29T17:33:11+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-the-sec-requires-from-businesses-after-a-data-breach\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-the-sec-requires-from-businesses-after-a-data-breach\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-the-sec-requires-from-businesses-after-a-data-breach\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2021\\\/11\\\/what-the-sec-requires-from-businesses-after-a-data-breach.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2021\\\/11\\\/what-the-sec-requires-from-businesses-after-a-data-breach.jpg\",\"width\":1200,\"height\":630},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/what-the-sec-requires-from-businesses-after-a-data-breach\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"headline,hacker,government,privacy,usa,data loss\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/tag\\\/headlinehackergovernmentprivacyusadata-loss\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"What The SEC Requires From Businesses After A Data Breach\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"What The SEC Requires From Businesses After A Data Breach 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/what-the-sec-requires-from-businesses-after-a-data-breach\/","og_locale":"en_US","og_type":"article","og_title":"What The SEC Requires From Businesses After A Data Breach 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/what-the-sec-requires-from-businesses-after-a-data-breach\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2021-11-29T17:33:11+00:00","og_image":[{"url":"https:\/\/securityintelligence.com\/wp-content\/uploads\/2021\/11\/Interracial-business-team-meeting-smile-and-brainstorm.jpeg","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/what-the-sec-requires-from-businesses-after-a-data-breach\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/what-the-sec-requires-from-businesses-after-a-data-breach\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"What The SEC Requires From Businesses After A Data Breach","datePublished":"2021-11-29T17:33:11+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/what-the-sec-requires-from-businesses-after-a-data-breach\/"},"wordCount":1079,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/what-the-sec-requires-from-businesses-after-a-data-breach\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2021\/11\/what-the-sec-requires-from-businesses-after-a-data-breach.jpg","keywords":["headline,hacker,government,privacy,usa,data loss"],"articleSection":["CyberSecurity Blogs"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/what-the-sec-requires-from-businesses-after-a-data-breach\/","url":"https:\/\/www.threatshub.org\/blog\/what-the-sec-requires-from-businesses-after-a-data-breach\/","name":"What The SEC Requires From Businesses After A Data Breach 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/what-the-sec-requires-from-businesses-after-a-data-breach\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/what-the-sec-requires-from-businesses-after-a-data-breach\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2021\/11\/what-the-sec-requires-from-businesses-after-a-data-breach.jpg","datePublished":"2021-11-29T17:33:11+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/what-the-sec-requires-from-businesses-after-a-data-breach\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/what-the-sec-requires-from-businesses-after-a-data-breach\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/what-the-sec-requires-from-businesses-after-a-data-breach\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2021\/11\/what-the-sec-requires-from-businesses-after-a-data-breach.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2021\/11\/what-the-sec-requires-from-businesses-after-a-data-breach.jpg","width":1200,"height":630},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/what-the-sec-requires-from-businesses-after-a-data-breach\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"headline,hacker,government,privacy,usa,data loss","item":"https:\/\/www.threatshub.org\/blog\/tag\/headlinehackergovernmentprivacyusadata-loss\/"},{"@type":"ListItem","position":3,"name":"What The SEC Requires From Businesses After A Data Breach"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/44178","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=44178"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/44178\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/44179"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=44178"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=44178"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=44178"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}