Cybersecurity has emerged as a critical concern for businesses, with far-reaching implications for financial reporting. According to IBM’s Cost of a Data Breach Report 2023, over 80% of organizations experience more than one data breach in 2022 and the global average cost of each breach is $4.5 million. The increasing frequency and sophistication of cyber threats, coupled with evolving regulatory landscapes, have created a complex environment that demands the attention of financial statement preparers and auditors. While many companies provided cybersecurity disclosures, the Securities and Exchange Commission (SEC) believed that investors and companies “would benefit if this disclosure were made in a more consistent, comparable, and decision-useful way.” As a result, in July 2023, the SEC adopted rules to enhance and standardize disclosures regarding cybersecurity risks management, strategy, governance, and incidents by public companies. In this CPE-eligible, eLearning course (1.0 CPE) we discuss the rising number (and rising cost) of cyberattacks, as well as the accounting and reporting issues that arise under U.S. GAAP. We’ll look at actual cyberattacks on “real-life” companies by reviewing their disclosures and resulting (decrease) in stock price. The course also provides you with the requirements of the SEC’s cybersecurity risk management, strategy, governance, and incident disclosure rules for public companies, reviewing actual disclosures by public companies since the rule was effective.