Hit By Ransomware Or Paid A Ransom Now Some Companies Will Have To Tell The Government
The bipartisan provision was passed by the US Senate as part of the $1.5 trillion FY 2022 funding bill with language matching the related Strengthening American Cybersecurity Act, which unanimously passed Senate earlier this month and requires critical infrastructure operators and owners to report substantial cyberattacks, like ransomware, to CISA within 72 hours and within 24 hours of making a ransomware payment. It aims to give the US government, through CISA, greater visibility into the current threat landscape facing US private and public sector organizations....