WASHINGTON DC – The US House of
Representatives passed bipartisan legislation on Wednesday designed to
help companies and the federal government better defend against the
growing threat of cyberattacks, despite opposition from privacy
advocates who fear it may open the door to more government spying on US
citizens.
Passed by a 307-116 vote, the controversial Protecting Cyber Networks
Act encourages US companies to share information about security breaches
with the federal government by providing them with expanded legal
liability protections, CNET.Com reported.
uptick in high-profile data breaches, the legislation would allow
companies to share information through a “cyber portal” administered by
the Department of Homeland Security.
Supporters say the legislation – similar to a measure approved last
month by the Senate Intelligence Committee – could help prevent and
mitigate the effects of cyberattacks, which typically result in the
theft of consumers’ personal information.
exposed 56 million credit card numbers, while another at Target yielded
credit card data of 40 million Target customers and the personal
information for an additional 70 million customers. In January,
insurance provider Anthem revealed that hackers had accessed the
personal data of as many 80 million people, including their Social
Security numbers.
steal our most valuable trade secrets and our most private information
and actually do something to stop it,” Rep. Adam Schiff (D-Calif.), the
top Democrat of the House Intelligence Committee, said on the House
floor.
forced the Obama administration to grapple with the best way to deal
with massive data leaks and thefts. Obama has earmarked $14 billion in
the 2016 budget proposal to beef up US efforts against such attacks.
February, the Obama administration announced the creation of a new
government agency, the Cyber Threat Intelligence Integration Center,
that will fuse information from various intelligence-gathering services
to thwart cyberattacks, in much the same fashion as government
counter-terrorism task forces share information.
The bill requires companies to remove personal information before data
is shared with the government.
former NSA contractor Edward Snowden released details of the National
Security Agency’s secret spying programs — that the legislation could
reinforce government powers to conduct surveillance on US citizens.
A coalition of 19 security researchers and 36 privacy organizations,
including the American Civil Liberties Union, urged the House to reject
the bill, contending that it would lead to “overbroad law enforcement
uses” beyond its intended scope.
investigate crimes and activities that have nothing to do with
cybersecurity, such as robbery, arson, carjacking or any threat of
serious bodily injury or death, regardless of whether the harm is
imminent,” according to a letter sent to members of the House on Monday.
entities that are grossly negligent or even reckless,” according to a
statement of administration policy issued Tuesday. “Appropriate
liability protections should incentivize good cybersecurity practices
and should not grant immunity to a private company for failing to act on
information it receives about the security of its networks.”
breaches. Hacks on businesses and government agencies ran rampant in
2014 — there were more than 1,500 data breaches worldwide, up nearly 50
percent from 2013, according to Netherlands-based security firm
Gemalto.
