Close Menu
TechTost
  • AI
  • Apps
  • Crypto
  • Fintech
  • Hardware
  • Media & Entertainment
  • Security
  • Startups
  • Transportation
  • Venture
  • Recommended Essentials
What's Hot

What is Mistral AI? Everything you need to know about the OpenAI competitor

Podcasting platform Riverside is getting into the newsletter game

Your Brand Deserves Its Own Stage — TechCrunch Disrupt 2026 Side Events

Facebook X (Twitter) Instagram
  • About Us
  • Contact Us
  • Privacy Policy
  • Terms and Conditions
  • Disclaimer
Facebook X (Twitter) Instagram
TechTost
Subscribe Now
  • AI

    What is Mistral AI? Everything you need to know about the OpenAI competitor

    4 July 2026

    Anthropic is discussing a new custom chip with Samsung

    3 July 2026

    Jersey Mike’s IPO shows just how bad the AI ​​hype has gotten

    3 July 2026

    OpenAI proposed donating 5% of its equity to a US sovereign wealth fund

    2 July 2026

    SpaceX has a prototype AI device, and it sure sounds like a phone

    2 July 2026
  • Apps

    Podcasting platform Riverside is getting into the newsletter game

    4 July 2026

    Threads adds new features to Live Chats as it expands access

    4 July 2026

    Travel app Hopper to pay $35 million in FTC settlement over ‘unfair’ hidden fees

    3 July 2026

    Meta quietly launches vibe-encoded Pocket gaming app

    3 July 2026

    Popular TV-watching app TV Time is shutting down as the company focuses on artificial intelligence

    2 July 2026
  • Crypto

    Venice AI goes unicorn with $65M Series A as first privacy AI platform takes off

    1 July 2026

    Crypto Exchange OKX wants AI agents to hire and pay each other

    30 June 2026

    Startup Battlefield 200 applications close today

    27 May 2026

    5 days left: Save up to $410 on Disrupt 2026 passes

    25 May 2026

    As crypto cools, a16z crypto raises $2.2 billion in capital

    6 May 2026
  • Fintech

    India’s payments chief believes artificial intelligence will play a big part in the next era of digital payments development

    28 June 2026

    Early Bird pricing ends tonight for the Founder Summit

    26 June 2026

    4 days left to save up to $190 on Founder Summit 2026

    23 June 2026

    Robinhood’s note on 10% layoffs shows that blaming AI doesn’t cut it

    17 June 2026

    Anthropic’s latest spat with the Trump administration may actually help it, sales figures suggest

    17 June 2026
  • Hardware

    IQM, Europe’s first public quantum company, admits that the future of the technology is uncertain

    3 July 2026

    Thiel Capital’s Jack Selby commits stakes in hot startups like Etched through Arizona connections

    3 July 2026

    Ashton Kutcher is leaving Sound Ventures to start a new VC firm with Morgan Beller

    2 July 2026

    Flipper’s new Busy Bar is a customizable display for productivity

    30 June 2026

    South Korea’s tech giants pledge over $550 billion to ease ‘RAMageddon’

    30 June 2026
  • Media & Entertainment

    Cloudflare’s new policy pushes AI companies to pay for publishers’ content

    1 July 2026

    Watch out, Amazon: The Kobo eReader now has a Goodreads rival

    29 June 2026

    YouTube Shorts just got even shorter with an update that lets you double the playback speed

    25 June 2026

    Deezer says its new feature allows fans to remix songs with the artist’s consent

    24 June 2026

    Instagram looks set to take on streaming services with a longer, episodic and live format for its TV app

    22 June 2026
  • Security

    Politician who investigated abuses of wiretapping software on his phone with Pegasus spyware

    3 July 2026

    The US government says it’s been hacked — again

    2 July 2026

    In major privacy victory, Supreme Court rules that geo-trafficking warrants are protected by privacy rights

    29 June 2026

    The Klue hack results in a data breach at several cybersecurity companies

    26 June 2026

    Cellebrite said it cut off Russia, but Russia used its tools anyway

    26 June 2026
  • Startups

    Your Brand Deserves Its Own Stage — TechCrunch Disrupt 2026 Side Events

    4 July 2026

    The browser wars aren’t about search anymore — here are the best alternatives to Chrome and Safari

    3 July 2026

    Last chance to apply — Startup Battlefield Australia applications close on 6 July

    3 July 2026

    Arcturus could halve grid electrical losses using nano-infused metals

    2 July 2026

    Indian tech tycoon bets $30 million of his own money to build AI alternative to Microsoft Office

    2 July 2026
  • Transportation

    Chevy built an all-American EV truck — why isn’t anyone buying it?

    3 July 2026

    Rivian raises EV sales forecast as second-quarter production ramps up

    3 July 2026

    Lucid Motors CFO steps down as new CEO continues leadership shakeup

    2 July 2026

    Tesla begins testing Cybercab without pedals or steering wheel in Austin

    2 July 2026

    Lime is starting life as a public company after years of uncertainty

    1 July 2026
  • Venture

    After $18B IPO, Bending Spoons Founder Says Success Comes From Minimizing Luck

    2 July 2026

    Bending Spoons defies SaaS slump, up 40% on first day of trading

    2 July 2026

    The DeepMind trio that created a poker AI is now making money for quantitative hedge funds

    1 July 2026

    Patronus AI lands $50 million to create ‘digital worlds’ that stress-test AI agents

    26 June 2026

    How to invest when everything is moving too fast

    24 June 2026
  • Recommended Essentials
TechTost
You are at:Home»Security»As hacks worsen, SEC turns up the heat on CISOs
Security

As hacks worsen, SEC turns up the heat on CISOs

techtost.comBy techtost.com18 January 202405 Mins Read
Share Facebook Twitter Pinterest LinkedIn Tumblr Email
As Hacks Worsen, Sec Turns Up The Heat On Cisos
Share
Facebook Twitter LinkedIn Pinterest Email

In the past We’ve seen Uber’s former security chief convicted in federal court of mishandling a data breach, a federal regulator indicting SolarWinds’ security chief for allegedly misleading investors before its own cyberattack, and new regulations forcing companies to disclose public data breaches within four business days.

It may seem like it’s never been a riskier time to work in cybersecurity.

But one of the takeaways from a panel at the ShmooCon hacker conference in Washington, DC on Sunday is for those in cyberspace not to give up on challenges.

Now in its penultimate year, ShmooCon brings together hackers, researchers, government officials and cybersecurity executives to discuss some of the most pressing issues facing the security community. A common theme heard among attendees this year is the increasingly dangerous nature of work in the cybersecurity industry itself. The infosec community is no stranger to legal risks—perhaps an inherent byproduct of working in the field—but is increasingly aware of the increasing legal oversight and consequences that come with the work.

Leading the discussion, startup attorney Elizabeth Wharton, former SEC attorney Danette Edwards, and tech investor Cyndi Gula shared their perspectives and predictions on a panel that explored how the stakes of responsibility in cyberspace are shifting from the bottom line to the executive suite.

Let the glow of previous dumpster fire breaches light the way for better data care and security practices. Thanks @cyndi_gula & Danette for my participation in #shmoocon Discussing how to minimize the risks of the Chief Information Security Officer and the team pic.twitter.com/pN8G24TQAh

— Elizabeth Wharton (@LawyerLiz) January 15, 2024

The SEC’s new cyber reporting rules were introduced last year, which now require companies to disclose “material” security incidents in public 8-K filings within four business days. The rules went into effect in December and have already led to a flurry of companies filing new data breach disclosures with the Securities and Exchange Commission in its wake, as companies figure out what a “material” impact means. It also saw the first instance of a ransomware gang using the rules to call out the hacked company itself for not filing with regulators.

“We’re going to see a lot of initial 8-K filings and then possibly multiple filings of the same cyber hacks,” Edwards, now a defense attorney and partner at the Katten law firm, said at ShmooCon.

Wharton, founder of Silver Key Strategies and who previously served on Atlanta’s ransomware incident response team, said cyber incidents can change hourly and may require subsequent disclosures.

“When you’re dealing with an incident and you’re still knee-deep in response four days in, you’ve identified, ‘oh, shoot, our bin’s on fire!’ but you haven’t even figured out what materials are necessary in the trash can as it burns — and you need to start reporting,” Wharton said. “Knowing that as things ebb and flow, public companies will have to update [those disclosures].”

The flip side of transparency combined with remote work is that more things than ever are recorded, recorded or otherwise stored and documented. This can be a boon for researchers and a headache for companies.

“I guess every email is going to be read either by your mother or in a deposition, or … in an SEC complaint, and it changes that water conversation,” Wharton said. “Since we’re not necessarily in offices, we make sure you don’t necessarily write it and the content gets lost in the meme you send to your co-workers because you thought it was hilarious.”

“And regulators don’t always have a great sense of humor,” Edwards said.

“Culture is integral to an organization — especially in what we do — because we have a lot of trust,” said Gula, managing partner of Gula Tech Adventures. “Companies are going to have a hard time bringing that culture with an eye that everything they do is going to be under control.”

Not only do the new cybersecurity reporting rules put companies and their data incidents in the spotlight, but recent federal enforcement actions show that cybersecurity executives are shouldering some of the blame as well.

In October, the Securities and Exchange Commission filed charges against SolarWinds CISO Timothy Brown for allegedly misleading investors about the company’s security prior to a cyberattack launched on the company by Russian spies in 2019. Many of the SEC’s charges come from comments Brown reportedly shared internally.

“We’ve also heard a lot of people don’t want to [to be CISO] because of that oversight and because of all these pitfalls that you don’t even know are ahead of time,” said Gula, who serves on the board of several startups. “Please do not move from this position. Please get up and do it.”

Along with that advice, Gula said documentation can also help. When executives need to make changes, fix defects, or improve cyber training, but receive plan or budget denials, ask, “Can I get this in writing?” Adding: “Whatever you can do to get that Eye of Sauron off of you so you can keep throwing the ring into the fire to put out what you have to do — that’s important.”

Zack Whittaker reports from ShmooCon in Washington, DC.

CISO CISOs cyber security danger management data breach hacks heat SEC turns worsen
Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
Previous ArticleAstroscale Completes $25 Million Space Force Resupply Orbiter
Next Article Land Moto is stepping up its electric bike battery game with a $3 million injection
bhanuprakash.cg
techtost.com
  • Website

Related Posts

Politician who investigated abuses of wiretapping software on his phone with Pegasus spyware

3 July 2026

The US government says it’s been hacked — again

2 July 2026

In major privacy victory, Supreme Court rules that geo-trafficking warrants are protected by privacy rights

29 June 2026
Add A Comment

Leave A Reply Cancel Reply

Don't Miss

What is Mistral AI? Everything you need to know about the OpenAI competitor

4 July 2026

Podcasting platform Riverside is getting into the newsletter game

4 July 2026

Your Brand Deserves Its Own Stage — TechCrunch Disrupt 2026 Side Events

4 July 2026
Stay In Touch
  • Facebook
  • YouTube
  • TikTok
  • WhatsApp
  • Twitter
  • Instagram
Fintech

India’s payments chief believes artificial intelligence will play a big part in the next era of digital payments development

28 June 2026

Early Bird pricing ends tonight for the Founder Summit

26 June 2026

4 days left to save up to $190 on Founder Summit 2026

23 June 2026
Startups

Your Brand Deserves Its Own Stage — TechCrunch Disrupt 2026 Side Events

The browser wars aren’t about search anymore — here are the best alternatives to Chrome and Safari

Last chance to apply — Startup Battlefield Australia applications close on 6 July

© 2026 TechTost. All Rights Reserved
  • About Us
  • Contact Us
  • Privacy Policy
  • Terms and Conditions
  • Disclaimer

Type above and press Enter to search. Press Esc to cancel.