Draft Bill Would Mandate Breach Notifications Within 24 Hours of Incident

Akamai blames outage on DDoS service malfunction, Inglis confirmed as first National Cyber Director, Carnival discloses data breach, New bill raises penalties for cyber breaches, much more

A bipartisan discussion draft bill circulated by Senators. Mark Warner (D-VA), Marco Rubio (R-FL), and Susan Collins (R-ME) would require public and private entities to alert the government within 24 hours of a cybersecurity breach or else face penalties and potential contract loss.

The breach notification legislation would require US government agencies and federal contractors, and critical infrastructure owners and operators to issue breach reports to the Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA). The bill also includes liability protections for companies that submit breach notification reports to encourage companies to disclose breaches. (Brian Fung and Alex Marquardt / CNN)

Related: Cyberscoop, Politico

Akamai said an hour-long outage that impacted more than 500 global businesses, including financial institutions and banks, was caused by a backfiring distributed denial-of-service (DDoS) mitigation service.

Akamai issued a statement s…