BKTI says systems isolated after suspected unauthorized access; investigation ongoing

Rhea-AI Filing Summary

BK Technologies Corporation detected potentially suspicious activity in its information technology systems on or about September 20, 2025 and reported the event in a Current Report dated October 6, 2025. The company isolated affected systems, engaged external cybersecurity advisors, and believes the third party has been removed and access to impacted information has been restored. A limited number of non-critical systems experienced minor disruption, and operations have continued in all material respects. The incident may have involved unauthorized access to non-public records, potentially including current and former employee records; the company is investigating scope and notifying law enforcement, affected parties, and regulators as appropriate. Management expects a significant portion of direct containment, investigation, and remediation costs to be recovered through insurance, and currently does not believe the incident is reasonably likely to materially impact financial condition or results of operations.

Positive

• Prompt containment actions taken (systems isolated and external advisors engaged)
• Operations continued in all material respects despite the incident
• Company expects significant insurance reimbursement for direct remediation costs
• Law enforcement notified and company intends to notify affected parties and regulators

Negative

• Unauthorized access appears to have potentially included non-public employee records
• Scope undetermined; investigation is ongoing and may reveal further impact
• Potential legal, regulatory, and reputational risks remain if additional exposures or claims arise

Insights

Cybersecurity Risk Officer

Containment appears effective; scope and data exposure remain under investigation.

The company reports isolation of affected systems, engagement of external advisors, and restoration of access, indicating initial containment and remediation steps were implemented promptly. Reporting involvement of law enforcement and planned notifications suggests standard incident response protocols were followed.

Key dependencies include the forensic findings on what data was accessed and timely insurance recoveries for remediation costs; investors should expect updates as the investigation defines the scope and any regulatory notices are furnished in the coming weeks to months.

Corporate Financial Analyst

Near-term financial impact appears limited per management; insurance recoveries expected to cover significant costs.

Management states they currently do not expect a material impact to financial condition or results, and that a significant portion of direct costs will likely be reimbursed by insurance. This implies limited immediate earnings pressure, barring discoveries of broader exposure or third-party claims.

Watch for confirmed insurance recovery amounts and any regulatory fines or litigation outcomes over the next 3-12 months, which would materially affect the company’s financials if larger-than-expected.

false 0000002186 0000002186 2025-10-06 2025-10-06

UNITED STATES

SECURITIES AND EXCHANGE COMMISSION

Washington, D.C. 20549

FORM 8-K

CURRENT REPORT

PURSUANT TO SECTION 13 OR 15(d) OF THE SECURITIES EXCHANGE ACT OF 1934

Date of Report (Date of earliest event reported): October 6, 2025

BK Technologies Corporation

(Exact name of registrant as specified in its charter)

Nevada		001-32644		83-4064262
(State or other jurisdiction of		(Commission		(IRS Employer
incorporation or organization)		File No.)		Identification Number)

7100 Technology Drive, West Melbourne, FL		32904
(Address of principal executive offices)		(Zip Code)

(321) 984-1414

(Registrant’s telephone number including area code)

N/A

(Former name or former address, if changed since last report)

Check the appropriate box below if the Form 8-K filing is intended to simultaneously satisfy the filing obligation of the registrant under any of the following provisions:

☐	Written communications pursuant to Rule 425 under the Securities Act (17 CFR 230.425)
☐	Soliciting material pursuant to Rule 14a-12 under the Exchange Act (17 CFR 240.14a-12)
☐	Pre-commencement communications pursuant to Rule 14d-2(b) under the Exchange Act (17 CFR 240.14d-2(b))
☐	Pre-commencement communications pursuant to Rule 13e-4(c) under the Exchange Act (17 CFR 240.13e-4(c))

Securities registered pursuant to Section 12(b) of the Act:

Title of Each Class		Trading Symbol(s)		Name of Each Exchange on Which Registered
Common Stock, par value $0.60 per share		BKTI		NYSE American

Indicate by check mark whether the registrant is an emerging growth company as defined in Rule 405 of the Securities Act of 1933 (§230.405 of this chapter) or Rule 12b-2 of the Securities Exchange Act of 1934 (§240.12b-2 of this chapter).

Emerging growth company ☐

If an emerging growth company, indicate by check mark if the registrant has elected not to use the extended transition period for complying with any new or revised financial accounting standards provided pursuant to Section 13(a) of the Exchange Act. ☐

Item 8.01          Other Events.

On or about September 20, 2025, BK Technologies Corporation (the “Company”) detected potentially suspicious activity involving its information technology (“IT”) systems. Upon detecting the issue, the Company began taking steps to assess, contain, and remediate the potentially unauthorized activity, including isolating the affected systems and launching an investigation with the assistance of external cybersecurity advisors.

As a result of the incident, a limited number of non-critical systems experienced minor disruption. However, through the Company’s remediation efforts, the Company believes that the third party responsible for this incident has been removed from the Company’s IT systems, and the Company’s ability to access information impacted by this incident has been restored. The Company’s operations have continued throughout the period since the detection of the cybersecurity incident in all material respects.

As part of the Company’s investigation into this incident, it appears that an unauthorized third-party may have obtained access to and acquired non-public information within the Company’s custody and control, which potentially includes records pertaining to current and former employees. The Company continues to investigate the nature and scope of the unauthorized access. The Company has notified law enforcement about this incident and intends to, as appropriate, furnish notice of this incident to affected parties and to regulatory agencies.

The Company currently expects that a significant portion of its direct costs incurred relating to containing, investigating and remediating the cybersecurity incident will be reimbursed through insurance recoveries.

While the Company’s investigation and assessment of this incident is ongoing, as of the date of this filing, the Company does not believe the incident is reasonably likely to materially impact the Company’s financial condition or results of operations.

Cautionary Statement Regarding Forward-Looking Statements

This Current Report on Form 8-K contains statements about future events and expectations which are “forward-looking statements” within the meaning of Sections 27A of the Securities Act of 1933, as amended, and 21E of the Securities Exchange Act of 1934, as amended. Forward-looking statements can be identified by forward-looking words such as “may,” “might,” “could,” “would,” “should,” “will,” “anticipate,” “believe,” “plan,” “estimate,” “project,” “expect,” “intend,” “seek,” “are encouraged,” and other similar expressions. Any statement contained in this Current Report on Form 8-K that is not a statement of historical fact may be deemed to be a forward-looking statement. All forward-looking statements involve risks, uncertainties and other factors that may cause actual results to differ materially from those expressed or implied in the forward-looking statements. Factors that might cause the Company’s actual results to differ materially from those anticipated in forward-looking statements include, but are not limited to, the Company’s ongoing assessment of the impacts of the cybersecurity incident, including the Company’s potential discovery of additional information related to the incident in connection with its investigation or otherwise; the Company’s expectations regarding its ability to contain and remediate the cybersecurity incident; the impact of the cybersecurity incident on the Company’s relationships with customers, employees, and governmental regulators; the legal, reputational, and financial risks resulting from the cybersecurity incident, including as may arise from any potential regulatory inquiries and/or litigation to which the Company may become subject in connection with the incident; and remediation and other additional costs that may be incurred by the Company in connection with the investigation and remediation of the incident. The forward-looking statements speak only as of the date of this Current Report on Form 8-K. The Company undertakes no obligation to publicly update or revise any forward-looking statements, whether as a result of new information, future events, or otherwise, except as required by applicable law. For additional information on identifying factors that may cause actual results to vary materially from those stated in forward-looking statements, see the Company’s Annual Report on Form 10-K for the fiscal year ended December 31, 2024, and the Company’s subsequent filings with the Securities and Exchange Commission.

SIGNATURES

Pursuant to the requirements of the Securities Exchange Act of 1934, as amended, the registrant has duly caused this report to be signed on its behalf by the undersigned hereunto duly authorized.

	BK TECHNOLOGIES CORPORATION
Date: October 6, 2025	By:	/s/ Scott A. Malmanger
		Scott A. Malmanger
		Chief Financial Officer

FAQ

What did BKTI disclose about the cybersecurity incident?

BKTI disclosed detection of potentially suspicious IT activity on or about September 20, 2025, isolation of affected systems, engagement of external cybersecurity advisors, and restoration of access to impacted information.

Did the incident disrupt BKTI's operations?

The company reported that a limited number of non-critical systems experienced minor disruption and that operations have continued in all material respects since detection.

Was any non-public information accessed in the BKTI incident?

BKTI stated that an unauthorized third party may have obtained non-public information potentially including records pertaining to current and former employees; the investigation into scope is ongoing.

Will BKTI bear the remediation costs from the incident?

The company currently expects that a significant portion of direct costs for containing, investigating, and remediating the incident will be reimbursed through insurance recoveries.

Has BKTI reported the incident to authorities and affected parties?

BKTI has notified law enforcement and intends to furnish notice to affected parties and regulatory agencies as appropriate.