A cyber security bill, which would allow information about hacking to be shared between companies, has been passed by the US House of Representatives.
The House approved the bill, prompting the top Republican and Democrat on the intelligence committee who sponsored it to issue a joint statement lauding its approval.
"Economic cyber spies will have a harder time stealing American business plans and research and development as the House took the first step today by passing a cyber security bill that will help US companies better protect themselves from dangerous economic predators," the statement said.
The legislation also allows government agencies to share secret cyber threat information with American companies to help the private sector protect its networks.
Critics have raised privacy concerns about the sharing of "threat information" between private network operators and the government, claiming it could lead to agencies collecting data on American communications, which is generally prohibited by law.
House intelligence committee chairman Mike Rogers and senior Democrat C.A. Ruppersberger said changes had been made to the legislation to strengthen privacy provisions, and that Facebook, the U.S. Chamber of Commerce, Boeing, AT&T and others had supported it.
We can't stand by and do nothing as US companies are hemorrhaging from the cyber looting coming from nation states like China and Russia
"We can't stand by and do nothing as US companies are hemorrhaging from the cyber looting coming from nation states like China and Russia," Rogers said.
But amendments favoured by engineering experts and civil rights advocates were not adopted. The legislation would still allow the information from private companies to be used for intelligence and national security purposes, not just cyber security.
The House bill would essentially override "important provisions of electronic surveillance law without instituting corresponding privacy, confidentiality, and civil liberties safeguards," the White House said in a statement.
"The bill would allow broad sharing of information with governmental entities without establishing requirements for both industry and the government to minimize and protect personally identifiable information."
The administration also faulted the bill's grants of broad immunity from privacy and antitrust lawsuits to the private companies that share threat information with the government and with corporate competitors.
The outlook for the House legislation in the current form is uncertain. It matches up with a Senate bill introduced by Republican John McCain, but Democrats, who control the chamber, are aligned behind a broader bill authored by Senator John Rockefeller and others.
The White House strongly supports that bill, which has provisions that would allow the Department of Homeland Security to direct companies maintaining critical infrastructure, such as water and power utilities, to meet new standards.
The American Civil Liberties Union said the House bill would allow companies to share private information with the government without a warrant and proper oversight.
"Cyber security does not have to mean abdication of Americans' online privacy. As we've seen repeatedly, once the government gets expansive national security authorities, there's no going back. We encourage the Senate to let this horrible bill fade into obscurity," Michelle Richardson, ACLU legislative counsel, said in a statement.
-
Cleo attack victim list grows as Hertz confirms customer data stolenNews Hertz has confirmed it suffered a data breach as a result of the Cleo zero-day vulnerability in late 2024, with the car rental giant warning that customer data was stolen.
-
Lateral moves in tech: Why leaders should support employee mobilityIn-depth Encouraging staff to switch roles can have long-term benefits for skills in the tech sector
-
Starmer bets big on AI to unlock public sector savingsNews AI adoption could be a major boon for the UK and save taxpayers billions, according to prime minister Keir Starmer.
-
UK government targets ‘startup’ mindset in AI funding overhaulNews Public sector AI funding will be overhauled in the UK in a bid to simplify processes and push more projects into development.
-
UK government signs up Anthropic to improve public servicesNews The UK government has signed a memorandum of understanding with Anthropic to explore how the company's Claude AI assistant could be used to improve access to public services.
-
The UK’s AI ambitions face one major hurdle – finding enough home-grown talentNews Research shows UK enterprises are struggling to fill AI roles, raising concerns over the country's ability to meet expectations in the global AI race.
-
US government urged to overhaul outdated technologyNews A review from the US Government Accountability Office (GAO) has found legacy technology and outdated IT systems are negatively impacting efficiency.
-
Government urged to improve tech procurement practicesNews The National Audit Office highlighted wasted money and a lack of progress on major digital transformation programmes
-
Government says new data bill will free up millions of hours of public sector timeNews The UK government is proposing new data laws it says could free up millions of hours of police and NHS time every year and boost the UK economy by £10 billion.
-
Online Safety Act slammed by rights groups as bill gains royal assentNews The Online Safety Act has been described as a veiled attempt to secure access to encrypted messages
