Breaking down the Strengthening American Cybersecurity Act

Breaking down the Strengthening American Cybersecurity Act


The Cyber ​​Incident Reporting Act, which was signed on March 15, is federal legislation designed to strengthen the ability to prevent and respond more quickly to cybersecurity attacks. Although it will not come into force until the final rules are determined, it is one of three Strengthening the U.S. Cybersecurity Act which aims to strengthen the cybersecurity of critical infrastructure and the federal government. The need for such action has been exacerbated by the situation in Eastern Europe, as cyber warfare has proven to be a key and effective attack tactic for Russian nation-states.

According to the Cyber ​​Incident Reporting Act, specifically, critical infrastructure operators and federal agencies must report cyberattacks to Cybersecurity and the Infrastructure Security Agency (CISA) within 72 hours. and ransomware payments in 24 hours.

The U.S. Global Cybersecurity Act will update the federal government’s current cybersecurity laws to improve coordination between federal agencies, ensure that the government takes a risk-based approach to cybersecurity, and require all agencies civilians report all cyberattacks to CISA.

Overall, the event demonstrates greater recognition of the need for better policy to prevent larger-scale attacks and highlights the impact the U.S. government can have on cybersecurity efforts within organizations.

But to truly understand the magnitude of the potential impact of the act, we must first get an insight into the current threat environment, while recognizing the benefits and limitations of the legislation. Let’s explore.

Cyber ​​threats show no signs of slowing down
Recent cyber threats against Ukraine have highlighted the need to increase security measures, while demonstrating the large-scale consequences of a nationwide cybersecurity attack. For example, several Ukrainian government and bank websites were recently taken offline as a result of a massive distributed denial of service (DDoS) attack.

Shortly after these attacks, a new “eraser” malware appeared aimed at Ukrainian organizations. discovered in hundreds of machines. These security incidents are suspected to have been carried out by Russian cybercriminals, creating a new digital warfare environment that has taken organizations by storm.

One of the areas of concern for countries that have imposed sanctions on Russia is the potential for retaliation for cyberattacks. In addition to escalating geopolitical tension in Eastern Europe, security teams continue to face an overwhelming number of ransomware attempts, with malicious actors, not only in Russia but around the world. . In fact, approximately 37% of global organizations said they were the victims of a ransomware attack in 2021, and this figure is expected to only increase this year.

Through the U.S. Cybersecurity Enforcement Act, a new foundation is created for public and private sector organizations, allowing them to create larger-scale defenses against nation-state actors while better strengthening protection against the ongoing cyber threats they face every day.

To read the full article, visit Dark Reading.





Source link

Related post

Interactive Whiteboard Global Market Report 2022

Interactive Whiteboard Global Market Report 2022

ReportLinker Key players in the interactive whiteboard market are Boxlight Corporation, Cisco System, Inc., Foxconn Technology Group, Google, Inc., Hitachi, Ltd.,…
Interactive Whiteboard Global Market Report 2022

Interactive Whiteboard Global Market Report 2022

ReportLinker Key players in the interactive whiteboard market are Boxlight Corporation, Cisco System, Inc., Foxconn Technology Group, Google, Inc., Hitachi, Ltd.,…
Penn State Harrisburg workshop explores agriculture in the classroom

Penn State Harrisburg workshop explores agriculture in the classroom

Throughout the week, teachers from the Harrisburg region, and as far away as Rhode Island, participated in activities that included learning…

Leave a Reply

Your email address will not be published.