SEC Aims to Avoid Cyber Disclosure Rule 'Compliance Burdens'
Official Says Disclosure Rule Includes Exceptions, Extensions for Smaller CompaniesThe U.S. Securities and Exchange Commission's requirement for publicly traded companies to report cyber incidents that have a material impact within four days is "not about playing gotcha with public companies," said the commission’s director of the corporation finance division.