---
ticker: DVN
company: DVN
filing_type: 10-K
year_current: 2024
year_prior: 2023
risks_added: 1
risks_removed: 1
risks_modified: 2
risks_unchanged: 19
source: SEC EDGAR
url: https://riskdiff.com/dvn/2024-vs-2023/
markdown_url: https://riskdiff.com/dvn/2024-vs-2023/index.md
generated: 2026-05-10
---

# DVN: 10-K Risk Factor Changes 2024 vs 2023

> Source: U.S. Securities and Exchange Commission (EDGAR)  
> Generated: 2026-05-10  
> All data extracted directly from official filings. No hallucinated content.

> **[AI-Generated Summary]** The paragraph below was produced by a language
> model and may contain errors. All other content on this page is deterministically
> extracted from the original SEC filing.

> DVN reframed its pandemic risk from COVID-19-specific language to a broader "Global Pandemics" framework, reflecting a shift toward treating pandemic risk as an ongoing category rather than a temporary disruption. The company substantively modified its dividend and share repurchase disclosure and enhanced its cybersecurity risk articulation, suggesting increased focus on capital allocation flexibility and operational threat mitigation. With 19 of 23 risks remaining unchanged, the alterations represent targeted refinements rather than a fundamental repositioning of DVN's risk profile.

---

## Summary

| Status | Count |
|--------|-------|
| New risks added | 1 |
| Risks removed | 1 |
| Risks modified | 2 |
| Unchanged | 19 |

---

## New in Current Filing: Global Pandemics Have Previously and May in the Future Adversely Impact Our Business

Global pandemics and the actions taken by third parties, including, but not limited to, governmental authorities, businesses and consumers, in response to such pandemics, including the COVID-19 pandemic, have previously adversely impacted and may in the future adversely impact the global economy, resulting in significant volatility in the oil and gas industry. A continued, prolonged or a renewed period of reduced demand for oil and other commodities and other adverse impacts from a pandemic may adversely affect our business, financial condition, cash flows and results of operations. Further, to the extent COVID-19 or any other pandemic adversely affects our business or the global economic conditions more generally, it may also have the effect of heightening many of the other risks described in this report.

---

## No Match in Current: Our Business Has Been Adversely Impacted by the COVID-19 Pandemic, and We May Experience Continuing or Worsening Adverse Effects From This or Other Pandemics

*This section from the 2023 filing does not have a high-confidence textual match in 2024. It may have been removed, merged, or substantially reworded.*

The COVID-19 pandemic and related economic repercussions created significant volatility, uncertainty and turmoil in the oil and gas industry and the broader economy. The pandemic and the related responses of governmental authorities and others to limit the spread of the virus significantly reduced global economic activity, which resulted in an unprecedented decline in the demand for oil and other commodities during 2020, along with a corresponding deterioration in commodity prices. Moreover, the COVID-19 pandemic contributed to disruption and volatility in global supply chains that resulted in increased costs and delays for materials, and we and our service providers faced increased potential for business interruption and other operational risks due to changes of business practices and possible constraints in retaining sufficient personnel due to illness, quarantines, government actions or other restrictions in connection with the pandemic. Although commodity prices subsequently recovered after their decline in 2020, COVID-19, its variants or any other future pandemic could lead to similar protracted periods of depressed commodity prices or result in other significant adverse consequences to our business. Further, to the extent COVID-19 or any other pandemic adversely affects our business or the global economic conditions more generally, it may also have the effect of heightening many of the other risks described in this report. 21 Table of Contents Table of Contents Index to Financial Statements Index to Financial Statements

---

## Modified: Our Ability to Declare and Pay Dividends and Repurchase Shares Is Subject to Certain Considerations

**Key changes:**

- Added sentence: "Furthermore, the IRA imposed a 1% non-deductible U.S."
- Added sentence: "federal excise tax (the "Stock Buyback Tax") on certain repurchases of stock by publicly traded U.S."
- Added sentence: "corporations, such as Devon, after December 31, 2022."
- Added sentence: "The Biden Administration has proposed increasing the amount of the Stock Buyback Tax from 1% to 4%; however, it is unclear whether and when such a change in the amount of the Stock Buyback Tax could be enacted and take effect."

**Prior (2023):**

Dividends, whether fixed or variable, and share repurchases are authorized and determined by our Board of Directors in its sole discretion and depend upon a number of factors, including the Company's financial results, cash requirements and future prospects, as well as such other factors deemed relevant by our Board of Directors. We can provide no assurance that we will continue to pay dividends or execute share repurchases at the current rate or at all. Any elimination of, or downward revision in, our dividend payout or share repurchase program could have an adverse effect on the market price of our common stock.

**Current (2024):**

Dividends, whether fixed or variable, and share repurchases are authorized and determined by our Board of Directors in its sole discretion and depend upon a number of factors, including the Company's financial results, cash requirements and future prospects, as well as such other factors deemed relevant by our Board of Directors. We can provide no assurance that we will continue to pay dividends or execute share repurchases at the current rate or at all. Any elimination of, or downward revision in, our dividend payout or share repurchase program could have an adverse effect on the market price of our common stock. Furthermore, the IRA imposed a 1% non-deductible U.S. federal excise tax (the "Stock Buyback Tax") on certain repurchases of stock by publicly traded U.S. corporations, such as Devon, after December 31, 2022. The Biden Administration has proposed increasing the amount of the Stock Buyback Tax from 1% to 4%; however, it is unclear whether and when such a change in the amount of the Stock Buyback Tax could be enacted and take effect.

---

## Modified: Cybersecurity Incidents May Adversely Impact Our Operations

**Key changes:**

- Reworded sentence: "We rely heavily on information systems and other digital technologies to conduct our business, and we anticipate expanding the use of and reliance on these systems and technologies, including through artificial intelligence, process automation and data analytics."
- Added sentence: "A wide variety of individuals or groups may perpetuate cyberattacks, ranging from highly sophisticated criminal organizations and state-sponsored actors to disgruntled employees, and the nature of, and methods used in, cyberattacks are similarly diverse and constantly evolving, with examples including phishing attempts, distributed denial of service attacks or ransomware."
- Added sentence: "The increase in remote working practices may also increase the risk of cybersecurity incidents, both from deliberate attacks and unintentional events."
- Reworded sentence: "Although we have experienced cybersecurity incidents from time to time, none have had a material effect on our business, operations or reputation; however, there is no assurance that such a breach has not already occurred and we are unaware of it, or that we will not suffer such a loss in the future."
- Added sentence: "22 22 22 Table of Contents Index to Financial Statements Table of Contents Table of Contents Index to Financial Statements Index to Financial Statements Table of Contents Table of Contents Index to Financial Statements Index to Financial Statements"

**Prior (2023):**

Our business has become increasingly dependent on digital technologies, and we anticipate expanding the use of these technologies in our operations, including through artificial intelligence, process automation and data analytics. Concurrent with the growing dependence on technology is a greater sensitivity to cyberattack related activities, which have increasingly targeted our industry. Perpetrators of cyberattacks often attempt to gain unauthorized access to digital systems for purposes of misappropriating confidential and proprietary information, intellectual property or financial assets, corrupting data or causing operational disruptions as well as preventing users from accessing systems or information for the purpose of demanding payment in order for users to regain access. In addition, our vendors (including third-party cloud and IT service providers), midstream providers and other business partners may separately suffer disruptions or breaches from cyberattacks, which, in turn, could adversely impact our operations and compromise our information. Moreover, we and other upstream companies rely on extensive oil and gas infrastructure and distribution systems to deliver our production to market, which in turn depend upon digital technologies. Any cyberattack directed at such infrastructure or systems could adversely impact our business and operations, including by limiting our ability to transport and market our production. Geopolitical instability may also increase our cybersecurity risk. 22 Table of Contents Table of Contents Index to Financial Statements Index to Financial Statements Although we have experienced cybersecurity incidents from time to time, none have had a material effect on our business, operations or reputation. However, our systems and procedures for protecting against such attacks and mitigating such risks may prove to be insufficient in the future due to system vulnerabilities, human error or malfeasance or other factors. Any such attacks could have an adverse impact on our business, operations or reputation and lead to remediation costs, litigation or regulatory actions. Moreover, as the sophistication and volume of cyberattacks continue to increase, we may be required to expend significant additional resources to further enhance our digital security or to remediate vulnerabilities, and we may face difficulties in fully anticipating or implementing adequate preventive measures or mitigating potential harm.

**Current (2024):**

We rely heavily on information systems and other digital technologies to conduct our business, and we anticipate expanding the use of and reliance on these systems and technologies, including through artificial intelligence, process automation and data analytics. Concurrent with the growing dependence on technology is a greater sensitivity to cyberattack related activities, which have increasingly targeted our industry. Perpetrators of cyberattacks often attempt to gain unauthorized access to digital systems for purposes of misappropriating confidential and proprietary information, intellectual property or financial assets, corrupting data or causing operational disruptions as well as preventing users from accessing systems or information for the purpose of demanding payment in order for users to regain access. A wide variety of individuals or groups may perpetuate cyberattacks, ranging from highly sophisticated criminal organizations and state-sponsored actors to disgruntled employees, and the nature of, and methods used in, cyberattacks are similarly diverse and constantly evolving, with examples including phishing attempts, distributed denial of service attacks or ransomware. The increase in remote working practices may also increase the risk of cybersecurity incidents, both from deliberate attacks and unintentional events. In addition, our vendors (including third-party cloud and IT service providers), midstream providers and other business partners may separately suffer disruptions or breaches from cyberattacks, which, in turn, could adversely impact our operations and compromise our information. Moreover, we and other upstream companies rely on extensive oil and gas infrastructure and distribution systems to deliver our production to market, which in turn depend upon digital technologies. Any cyberattack directed at such infrastructure or systems could adversely impact our business and operations, including by limiting our ability to transport and market our production. Geopolitical instability may also increase our cybersecurity risk. Although we have experienced cybersecurity incidents from time to time, none have had a material effect on our business, operations or reputation; however, there is no assurance that such a breach has not already occurred and we are unaware of it, or that we will not suffer such a loss in the future. We devote significant resources to prevent cybersecurity incidents and protect our data, but our systems and procedures for identifying and protecting against such attacks and mitigating such risks may prove to be insufficient due to system vulnerabilities, human error or malfeasance or other factors. Any such attacks could have an adverse impact on our business, operations or reputation and lead to remediation costs, litigation or regulatory actions. Moreover, as the sophistication and volume of cyberattacks continue to increase, we may be required to expend significant additional resources to further enhance our digital security or to remediate vulnerabilities, and we may face difficulties in fully anticipating or implementing adequate preventive measures or mitigating potential harm. 22 22 22 Table of Contents Index to Financial Statements Table of Contents Table of Contents Index to Financial Statements Index to Financial Statements Table of Contents Table of Contents Index to Financial Statements Index to Financial Statements

---

*Data sourced from SEC EDGAR. Last updated 2026-05-10.*