NYT: S.E.C. Hacking Response Provides Road Map for Compromised Companies
But the hacking is more than a simple stumble for the S.E.C. It has provided a road map for what compromised companies can say in the future — using the S.E.C.’s own words — and raised the question of how the commission would secure hugely valuable information if it succeeds in its goal of collecting even more of it.
In announcing the breach last week, Mr. Clayton noted that “even the most diligent cybersecurity efforts will not address all cyberrisks that enterprises face.” Those words are certain to be cited back to the S.E.C. by any company — especially Equifax — when questions are raised about the systems it uses to prevent digital attacks and make a timely disclosure to the public when they do occur.
The headline says it all. What’s the over/under on how many crisis response manuals have been updated to include Clayton’s own language?
