Five major U.S. banking groups have asked the SEC to cancel its rule requiring companies to disclose cybersecurity incidents within four days, arguing it conflicts with national security protocols, aids ransomware attackers, and creates confusion during active investigations and responses.