After seeking to pass broad private sector cybersecurity legislation for a number of years, Congress finally passed and the President signed into law the Cybersecurity Act of 2015 (Cybersecurity Act).

The Cybersecurity Act makes three key changes in current law. First, it provides explicit authorization for companies to share cyber threat information with each other and the government, as well as receive such information. Second, it authorizes private sector use of defensive measures, and third it provides a safe harbor from liability for sharing the cyber threat or defensive measure information in good faith in compliance with the safeguards required by the legislation.


Continue Reading Congress Finally Passes the Cybersecurity Act of 2015