It follows guidance in the US from the Securities and Exchange Commission (SEC) requiring public companies to disclose cyber security risks. Infographic by Veracode Application Security Hi!