Lawmakers Include Extension of Cyberthreat Sharing Law in Shutdown Resolution
Under legislation approved Monday by the Senate, CISA 2015 will go back into effect through Jan. 30, 2026, once again providing liability shields, antitrust protections and Freedom of Information Act exemptions for firms sharing cyberthreat indicators with federal agencies. Experts hope the extension provides lawmakers enough time to negotiate a longer-term deal.
Without those statutory protections in place, analysts warned some firms could see participation as too risky amid the shutdown. “We live in such a litigious society today, that the single biggest inhibitor is the fear of information shared being used against the firm in a class action lawsuit,” Errol Weiss, chief security officer of the Health Information Sharing and Analysis Center (Health-ISAC), said as the shutdown began in late September.
