Markets
Cybersecurity

SEC Weighs Four-Day Deadline for Firms to Disclose Major Hacks

  • Watchdog wants firms to report cyberattacks in public filings
  • Plan to be considered by SEC commissioners on Wednesday

The U.S. Securities and Exchange Commission headquarters in Washington, D.C.

Photographer: Andrew Harrer/Bloomberg

Contact us:
Provide news feedback or report an error
Confidential tip?
Send a tip to our reporters
Site feedback:
Take our SurveyNew Window
By
Updated on
Lock
This article is for subscribers only.

Companies would face more pressure to alert the public of hacks or other significant cybersecurity incidents under a new plan from the U.S. Securities and Exchange Commission.

The SEC on Wednesday proposed requiring publicly-traded firms to disclose breaches within four days. The demands would apply to incidents that are considered “material,” or important to the average investor.

HomeBTV+Market DataOpinionAudioOriginalsMagazineEvents
News
MarketsEconomicsTechnologyPoliticsGreenCryptoAI
Work & Life
WealthPursuitsBusinessweekCityLabSportsEqualityManagement & Work
Market Data
StocksCommoditiesRates & BondsCurrenciesFuturesSectorsEconomic Calendar
Explore
NewslettersExplainersPointed News QuizAlphadots GameThe Big TakeGraphicsSubmit a TipAbout Us
Terms of ServiceTrademarksPrivacy Policy
CareersAdvertise
Ad Choices
Help©2026 Bloomberg L.P. All Rights Reserved.