Two points here. They are not allowed to stay silent. 2 Main reasons but not the only ones. All attacks on companies now need to be disclosed where there has been a data breach. Also anything that may have a significant impact on a companies earnings or profitability has to be disclosed for any public company as it may affect share prices.
You make good points…
I tell anyone with A level aged kids to get them on a path to being a CISO as there are fundamentally too few people in this profession!
I’m aware that data breaches need to be notified (in most cases), however the magnitude of the operational impact does not. Interesting KP wanted to expose that in the way they have!
Pfeifer & Langen industrial are the ultimate parent company and privately owned not listed