SEC adopts cyberattack disclosure rules, listed crypto firms included
1 min readPublic companies in the United States, including listed crypto firms, will be required to disclose any major cybersecurity incidents within a four-day time limit, under new rules adopted by the United States securities regulator.
The
Cryptocurrencies have been a prime target for North Korea state-backed Lazarus Group and other cybercriminals looking to pull off a high-value exploit. Lazarus Group has hacked cryptocurrency platforms well over $850 million across several high-profile exploits.
The cybersecurity rules were first proposed by the SEC in March 2022.
Magazine: Crypto regulation: Does SEC Chair Gary Gensler have the final say?