The corporate regulator has revealed it is investigating how directors have prepared for and responded to cyberattacks, with legal action looming against some unnamed individuals.

ASIC chairman Joe Longo has previously warned that the watchdog would bring charges against directors who fail to adequately prepare for hacks, and ASIC commissioner Simone Constant confirmed the process was under way, but declined to name the companies.