The Role of Internal Controls in Reducing Cybersecurity Contagion Effects
Andrea Seaton Kelton & Ya‐wen Yang
Abstract
SUMMARY This article summarizes a study by Kelton and Yang (2024), who investigate cybersecurity breach contagion effects where nonbreached (bystander) firms experience negative share price responses to a disclosed cybersecurity breach at an industry peer firm. The study finds bystander firms reporting an accounting loss in the previous year are more susceptible to contagion effects than bystander firms reporting a profit. Importantly, the study shows internal control quality provides protection from contagion effects, particularly for loss firms. The findings are useful for auditors as they show the expanding importance of reporting on firms’ internal controls. Auditors and managers may also consider the results of this study when communicating the importance of internal controls beyond financial reporting and exploring ways to mitigate cybersecurity risk.
1 citation
Evidence weight
Balanced mode · F 0.40 / M 0.15 / V 0.05 / R 0.40
| F · citation impact | 0.16 × 0.4 = 0.06 |
| M · momentum | 0.53 × 0.15 = 0.08 |
| V · venue signal | 0.50 × 0.05 = 0.03 |
| R · text relevance † | 0.50 × 0.4 = 0.20 |
† Text relevance is estimated at 0.50 on the detail page — for your query’s actual relevance score, open this paper from a search result.