This article appeared in Business Crimes Bulletin, an ALM/Law Journal Newsletters publication that features the news and analysis you need to stay on top of the fast-changing, multi-faceted world of financial and white-collar crime.

The Security and Exchange Commission’s (SEC) march toward putting stringent cybersecurity disclosure requirements in place for public companies and covered entities reached its endpoint last month. Some 16 months after first proposing rules for public companies and investment advisors, the SEC adopted new rules, chief among them that public companies disclose material cybersecurity breaches to investors within four days.