This is an interesting twist on disclosing breaches. This can become an interesting conflict for an organization that may need to contain a breach for various reasons while also having an obligation to its shareholders to share the conditions of the organization. This article mentions the most reason case of the pending merger of Verizon and Yahoo. Since Yahoo had just recently disclosed that it had suffered a massive breach it may have a huge financial impact on Yahoo which Verizon did not account for when making an offer.
http://www.forbes.com/sites/christopherskroupa/2016/10/27/exposing-litigation-the-hidden-risks-of-cyber-breach/#7930f77c1988
An interesting note from the article is the importance of the Board of Directors in providing oversight to all the companies risks, including its cyber risks. It is important for directors to understand that IT risks is no longer the responsibility of the IT function, but the entire organization. With so many different ways for an attacker to act on a vulnerability, it is the responsibility for the entire organization to protect its data and digital resources.