New law requires ‘critical infrastructure’ organizations to report cybersecurity incidents, ransomware payments

Bhavesh Vadhani, Daryouche Behboudi, Deborah Nitka