The U.S. Securities and Exchange Commission may wish to add the word “cyber” in front of its name since it released guidelines for public companies to follow in disclosing information about cyberattacks and material network breaches. The guidelines, issued on October 13 after a request from Senator Jay Rockefeller in response to the growing incidence of high-profile hackings and the frequent criticisms of companies’ post-breach responses, look to assist companies in assessing what, if any, disclosures should be provided about cybersecurity matters. Existing disclosure requirements under federal securities laws oblige public companies to disclose risks and events that a reasonable investor would consider important to an investment decision, but do not specifically require cyberattacks and cyber risks to be reported.