BNB PLUS CORP. 10-K Cybersecurity GRC - 2025-12-19

Page last updated on December 22, 2025

BNB PLUS CORP. reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2025-12-19 18:34:50 EST.

Filings

10-K filed on 2025-12-19

BNB PLUS CORP. filed a 10-K at 2025-12-19 18:34:50 EST
Accession Number: 0001104659-25-123342

Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!

Item 1C. Cybersecurity.

ITEM 1C. CYBERSECURITY The Company operates in blockchain and digital asset technology sector and the biotechnology sector, which are subject to various cybersecurity risks that could adversely affect our business, financial condition, and results of operations, including the loss or theft of private keys or breaches of our digital wallets; intellectual property theft; fraud; extortion; harm to employees or customers; violation of privacy laws and other litigation and legal risk; and reputational risk. We have implemented a risk-based approach to identify and assess the cybersecurity threats that could affect our business and information systems. Our cybersecurity program is aligned with industry standards and best practices, such as the National Institute of Standards and Technology ("NIST") Cybersecurity Framework. We conduct periodic risk assessments using various tools and methodologies to identify and manage the potential impact and likelihood of various cyber scenarios, including those involving third-party service providers , and to determine the appropriate mitigation strategies and controls. We also monitor and evaluate our cybersecurity posture and performance on an ongoing basis through regular vulnerability scans, penetration tests, and threat intelligence feeds. We require third-party service providers with access to personal, confidential or proprietary information to implement and maintain comprehensive cybersecurity practices consistent with applicable legal standards and industry best practices. Our business depends on the availability, reliability, and security of our information systems, networks, data, and intellectual property. Any disruption, compromise, or breach of our systems or data due to a cybersecurity threat or incident could adversely affect our operations, customer service, product development, and competitive position. They may also result in a breach of our contractual obligations or legal duties to protect the privacy and confidentiality of our stakeholders. Such a breach could expose us to business interruption, lost revenue, ransom payments, remediation costs, liabilities to affected parties, cybersecurity protection costs, lost assets, litigation, regulatory scrutiny and actions, reputational harm, customer dissatisfaction, harm to our vendor relationships, or loss of market share. Our Chief Executive Officer ( "CEO" ) conducts the regular assessment and management of material risks from cybersecurity threats, including review with our IT team and third party providers. All employees and consultants are directed to report to senior management with any irregular or suspicious activity that could indicate a cybersecurity threat or incident. The Audit Committee of our Board of Directors evaluates our cybersecurity assessment and management policies, including quarterly interviews with our senior officers and independent registered accounting firm.

Company Information