- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
By 
Adrianne Appel2024-09-05T19:08:00
The U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) has created a new online portal for organizations to voluntarily report cybersecurity incidents, including ransomware attacks.
CISA launched the website as the agency prepares a final rule that will require organizations considered to be critical infrastructure to report cyber incidents and ransomware attacks to the agency. CISA issued a Notice of Proposed Rulemaking April 4 and is expected to release the final rule in 2025.
The move is an attempt to bring coordination to the government’s disparate cybersecurity efforts, and to better defend the nation against cyberattacks, CISA said. Currently, more than 36 government agencies and offices currently receive or collect cyber incident reports.
THIS IS MEMBERS-ONLY CONTENT. To continue reading, choose one of the options below.
News and analysis for the well-informed compliance or audit exec. Select an option and click continue.
Annual Membership $499 Value offer
Full price one year membership with auto-renewal.
Membership $599
One-year only, no auto-renewal.
American Water Works Company, which supplies drinking water and wastewater to 14 million customers, disclosed a breach of its computer networks and system due to a cybersecurity incident.
The U.S. Department of Commerce unveiled a diagnostic supply chain risk assessment tool, which will “utilize a comprehensive set of indicators to assess structural supply chain risk across the U.S. economy,” the agency said.
The Environmental Protection Agency is increasing its inspections of public drinking water systems after finding a majority of those reviewed were vulnerable to cyberattacks and related threats.
Any product that uses AI needs to be safety assessed for its entire lifespan under new rules that went into effect recently across the EU. Experts warned companies using AI to tailor products could be classed as “manufacturers” and face the same duty of care as developed.
When lawmakers slam the U.K.’s chief financial regulator as “incompetent,” it not only opens the doors for others to pile criticism on it, but it sparks a debate about how the organization can be improved–or removed.
The U.K. Financial Conduct Authority apologized to investors in peer-to-peer investment firm Collateral for not acting swiftly enough to prevent Collateral from defrauding its customers.
