In a significant move to strengthen cybersecurity measures in the digital realm, the U.S. SEC has rolled out a set of new regulations. Under these regulations, all listed companies, including cryptocurrency firms, will now be required to divulge major cybersecurity incidents they encounter. This move comes in the wake of rising cyber threats and data breaches that have plagued various sectors, including the cryptocurrency space.
The newly adopted rules demand that companies report any major cybersecurity incident deemed material on Form 8-K, specifically on the new Item 1.05. This disclosure must be made within four business days after determining the incident’s materiality. The report should outline the incident’s nature, scope, and timing, along with its significant impact on the company’s operations.
Additionally, the rules add Regulation S-K Item 106, mandating companies to describe their processes for identifying and managing cybersecurity threats. Companies must also elaborate on the board of directors’ oversight in dealing with cybersecurity risks and management’s expertise in assessing and handling such threats. These crucial disclosures will be required in the annual reports of Form 10-K.
Foreign companies are not exempt from this regulatory sweep either. They must comply with similar disclosure requirements under Form 6-K for material cybersecurity incidents and Form 20-F for cybersecurity risk management, strategy, and governance.
While these new regulations aim to bolster cybersecurity practices, the SEC’s chief accountant has warned accounting firms working with cryptocurrency clients sternly. The warning highlights the legal liability auditors may face if they endorse partial reviews of cryptocurrency companies’ finances as full-fledged audits.
SEC Warns Accounting Firms Over Crypto Audits
Meanwhile, SEC Chief Accountant Paul Munter expressed concern about some cryptocurrency trading platforms that advertised third-party reviews, presented as audits, to investors. It has raised suspicions regarding the accuracy and transparency of these partial reviews and led to potential liabilities for auditors.
The call for more transparency and accountability within the crypto space has been met with some skepticism. SEC Commissioner Hester Peirce questioned the potential discouragement of sincere efforts by platforms to provide more transparency regarding their reserves.
Despite the debate, the SEC’s focus on enforcing stricter cybersecurity disclosures and transparent financial reviews in the crypto industry marks a significant step towards fostering investor confidence and safeguarding digital assets.
Related Reading | Chat GPT gives Pomerdoge the award for best meme in 2023. Cosmos and Ripple continue to fall