Key Cybersecurity Intelligence-Sharing Law Expires as Government Shuts Down

The Cybersecurity Information Sharing Act expired on Wednesday when the federal government shut down. The law had provided legal protections since 2015 for organizations to share cyber threat intelligence with federal agencies. Without these protections, private sector companies that control most U.S. critical infrastructure face potential legal risks when sharing information about threats. Sen. Gary Peters called the lapse "an open invitation to cybercriminals and hostile actors to attack our economy and our critical infrastructure."

The intelligence sharing enabled by CISA 2015 helped expose Chinese campaigns including Volt Typhoon in 2023 and Salt Typhoon last year. Several cybersecurity firms pledged to continue sharing threat data despite the law's expiration. Halcyon and CrowdStrike confirmed they would maintain information sharing. Palo Alto Networks said it remained committed to public-private partnerships but did not specify whether it would continue sharing threat data. Multiple bipartisan reauthorization efforts failed before the shutdown. The House Homeland Security Committee had approved a 10-year extension last month.

Re:

[garyisabusyguy]

Comments like your make the Heritage Foundation and Putin drool whilst rubbing their hands together

It is one thing to be a Nihilist, it is quite another to be a useful idiot

Every day it is becoming clearer, who is running the show (Project 2025 [americanprogress.org]), and it certainly isn't trump

Is the Patriot Act due for renewal?

[spacepimp]

I'd like to see that fail to get recertified for any reason.

This is total BS ..

[Mirnotoriety]

“The Cybersecurity Information Sharing Act expired on Wednesday when the federal government shut down. The law had provided legal protections since 2015 for organizations to share cyber threat intelligence with federal agencies. Without these protections, private sector companies that control most U.S. critical infrastructure face potential legal risks when sharing information about threats”

This is of course total BS. CERT (Computer Emergency Response Team) provided such a service. At least until the clammy hand of GOV got their hands on it in Feb 2023.

Re:

[sabbede]

Nor would they face any legal risks from continuing to act in good faith as if the law were in place. Maybe in theory, but in practice, no.

Re:

[gabrieltss]

No party will release them.Biden had them and didn't and Trump won't. Why? To many might profile, rich and powerful peoples names are in there. And you can bet they are ALL calling in their "favors" to have those files suppressed at the highest levels of government.

Re: Schumer Shutdown

[RealMelancon]

Democrat communists, do you know what communism is ? And those illegal aliens you despise will be paying our pensions.

Re:

[sabbede]

If a program relies on illegal behavior to function, something is wrong. That is not something that can be "fixed" by requiring that the lawbreaking continue.