CISA Proposes Sweeping Cybersecurity Incident Reporting for U.S. Companies – JD Supra

The Cybersecurity and Infrastructure Security Agency (CISA) in the U.S. is considering new regulations that would require companies to report cybersecurity incidents to the government within 72 hours. This proposal aims to improve threat detection and response capabilities across critical infrastructure sectors. Companies may face fines or penalties for failing to comply.