I think if siemens was breached they have to publish as it is stock market listed, NIS2 and also founder of the charter of trust. Question is what do you consider breach. Is it malware incident? Some cryptolocker? Or is it exfiltration of IP?
Difference might be in voluntarily making bank account and applying for loan and impersonating person. One might be punishable as criminal offence, other as minor scam (not sure about proper legal terms). Also in certain jurisdictions it makes sense as different police units investigating certain crimes and scammers might be connected.
Maybe you are forgetting software industry is pretty inmature. Thats why we struggle with standards, quality, hell even job description (engineer is in certain countries regulated job name). Not mentioning interoperabilty, long term support (ics/scada anyone) or security. This is still wild wild west in 1850+. Civilization is pushing but…
I live in city and i do not have space to do it. I do not think draing oil is legal on city center. Or wise for that matter. So i drive for oil change, even though i know how to so it