Senators Introduce Federal Breach Notification Bill
Healthcare Info Security
A bipartisan group of senators formally introduced a federal breach notification bill Wednesday that would require federal agencies, federal contractors and organizations that are considered critical to U.S. national security to report security incidents to the Cybersecurity and Infrastructure Security Agency within 24 hours of discovery.
Under the Cyber Incident Notification Act of 2021, companies that do not report an incident within 24 hours could face a maximum financial penalty equal to 0.5% of the previous year's gross revenue. The measure, however, allows for exceptions to the penalty, depending on the circumstances.
Some cybersecurity experts have said that...