TSA's New Pipeline Cybersecurity Directive Mandates Hack Incident Reports
Hafnium hackers infiltrated Belgian government, Hackers got inside Fujitsu's information-sharing tool, Rowhammer attacks come closer to reality, European watchdogs warn of Clearview AI, more
Know anyone who would benefit from a premium subscription to Metacurity? Please give them the gift of staying up-to-date on cybersecurity developments.
On the heels of the highly disruptive ransomware attack on Colonial Pipeline, a new directive issued by the Transportation Security Administration (TSA) will require certain pipeline operators to report hacking incidents to the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) within 12 hours. The directive will also levy fines starting at approximately $7,000 on operators for failing to comply with security guidelines, officials say.
The directive further requires pipeline operators to designate an executive to be available at all hours of the day to coordinate with DHS officials in the event of a cybersecurity incident. Finally, it orders pipeline companies to review current cyber practices and identify gaps and risks and report the results of those reviews to TSA and CISA within thirty days. (Se…
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.