SEC proposes four-day rule for public companies to report cyberattacks

And it'll be in an 8-K for all to see

A new rule proposed by the US Securities and Exchange Commission (SEC) would force public companies to disclose cyberattacks within four days along with periodic reports about their cyber-risk management plans....