BFI Working Paper·Dec 14, 2020

Cybersecurity Risk

Chris Florakis, Christodoulos Louca, Roni Michaely, and Michael Weber

We develop a novel firm-level measure of cybersecurity risk using textual analysis of cybersecurity-risk disclosures in corporate filings. The measure successfully identifies firms extensively discussing cybersecurity risk in their 10-K, displays intuitive relations with quantitative measures of cybersecurity risk disclosure language, exhibits a positive trend over time, is more prevalent among industries relying more on information technology systems, correlates with several characteristics linked to firms hit by cyber attacks and, importantly, predicts future cyber attacks. Stocks with high exposure to cybersecurity risk exhibit high expected returns on average, but they perform poorly in periods of increasing attention to cybersecurity risk. 

View Working Paper View On SSRN View Research Brief
Related People
Related Insights

More on this topic

BFI Working Paper·Jan 28, 2025

Drive Down the Cost: Learning by Doing and Government Policies in the Global EV Battery Industry

Panle Jia Barwick, Hyuk-soo Kwon, Shanjun Li Nahim, and Bin Zahur
Topics: Energy & Environment, Technology & Innovation
BFI Working Paper·Dec 10, 2024

Learning Fundamentals from Text

Alex G. Kim, Maximilian Muhn, Valeri Nikolaev, and Yijing Zhang
Topics: Technology & Innovation
BFI Working Paper·Oct 7, 2024

12 Best Practices for Leveraging Generative AI in Experimental Research

Samuel Chang, Andrew Kennedy, Aaron Leonard, and John List
Topics: Technology & Innovation