Major tech group warns proposed SEC cyber rule could expose companies to further risks

The Information Technology Industry Council is raising concerns that an SEC cybersecurity proposal could interfere with companies’ incident remediation efforts and is calling on the commission to work with industry on cyber issues including incident notification.

“[T]he proposed incident reporting requirements would require companies to publicly disclose details regarding ongoing cybersecurity incidents that have not yet been remediated, potentially providing increased opportunities for cybercriminals to target victim companies,” according to ITI senior vice president and general counsel John Miller.

The...