Senators Introduce Legislation Requiring Reports of Cybersecurity Threats

Print More

Leaders of the Senate Intelligence Committee and other bipartisan lawmakers have formally introduced the Cyber Incident Notification Act requiring federal contractors and critical infrastructure groups to report attempted breaches following months of escalating cyberattacks, reports The Hill. The proposed legislation would require federal agencies, government contractors and groups considered critical to national security — such as hospitals, utilities, financial services and information technology groups — to report cyber incidents to the Cybersecurity and Infrastructure Security Agency (CISA) within 24 hours.

Primarily sponsored by Senate Intelligence Committee Chairman Mark Warner (D-Va.), Vice Chairman Marco Rubio (R-Fla.) and committee member Susan Collins (R-Maine), the bill would grant liability protections to groups that report breaches, along with anonymizing personal information of the companies involved in the incidents in order to encourage reporting. The bill is being rolled out as part of the Senate’s response to the multiple major cyberattacks in recent months including the SolarWinds hack, which allowed Russian government-linked hackers to breach nine federal agencies for most of last year, and the ransomware attacks by Russian cybercriminals on Colonial Pipeline and meat producer JBS USA in May.

Leave a Reply

Your email address will not be published. Required fields are marked *