Adding to its mounting list of headaches — Yahoo is now facing a probe from the Securities and Exchange Commission as to whether or not it could have acted more promptly in response to two massive data breaches that left over a billion customers’ information compromised.
Specifically, the SEC is curious as to whether Yahoo’s disclosures about the cyberattacks complied with civil securities laws that require firms disclose cybersecurity issues at the point they become of material interest to investors. Yahoo disclosed a breach of 500 million users’ data in September of 2016, despite the fact that the hack itself took place in 2014.
‘Enforcement 40’ for 2020
Join Us On LinkedIn
Join the Securities Litigation and Enforcement Group on LinkedIn