Bipartisan Cyber Incident Reporting for Critical Infrastructure Act of 2022 Signed into Law | Pillsbury Winthrop Shaw Pittman LLP

Irina Baranova

Entities Subject to Reporting Requirements The Act requires “covered entities” to report any cyber incidents and ransomware payments to CISA. While the Act requires the CISA director to define “covered entities” and “covered cyber incidents” more clearly for the purposes of the law’s reporting requirements, the broad definitions currently within […]

New Cybersecurity Law Will Require Cyber-Incident Reporting for Critical Infrastructure | Alston & Bird

Irina Baranova

In the wake of widespread ransomware attacks, the newly enacted Strengthening American Cybersecurity Act will require “covered entities” to report data breaches to federal regulators. Our Privacy, Cyber & Data Strategy Team answers pressing questions about the new law. What companies and industries are covered? What types of cyber-incidents must […]

President Biden Signs into Law the Cyber Incident Reporting for Critical Infrastructure Act, Expanding Cyber Reporting Obligations for a Wide Range of Public and Private Entities

Irina Baranova

March 22, 2022 Click for PDF On March 15, 2022, President Joe Biden signed into law the Cyber Incident Reporting for Critical Infrastructure Act, which was included in an omnibus appropriations bill.[1]  Against the backdrop of high-profile cyberattacks on critical infrastructure providers and growing concerns of retaliatory cyberattacks relating to […]