Senate Majority Leader Chuck Schumer urged the Federal Trade Commission (FTC) and the Department of Justice to investigate criminal instances impacting US consumers and provide better support amid the increasing cyberattacks in the nation.
In a press conference, Schumer addressed the cyberattacks exposing data of US citizens and expressed how companies are evading their responsibility to report cybercrimes, address data breaches, and offer adequate help to their customers.
Several companies, including Uber and American Airlines, were hacked this year, exposing millions of users’ data. The cyberattack on the 911 helpline also paralyzed the emergency response systems, impacting life and support.
He further asked businesses to offer more information security to their customers and act diligently on the law signed in March. The Cyber Incident Reporting for Critical Infrastructure Act of 2022 entitles reporting cyber incidents and ransomware payments to the Cybersecurity and Infrastructure Security Agency (CISA).
Schumer reiterated that the new law mandates companies to report hacks to the Department of Homeland Security within 72 hours after discovering the incident. The law requires companies to report within 24 hours in case of a ransomware attack. He expressed concerns over the current state wherein several consumers are unaware of data breaches that threaten their data and identity.
Schumer praised Suffolk county for following the law and said that he has no problems with what they have done. However, more information was needed on what the federal department was doing after they were alerted about the Suffolk data breach and similar cyber-attacks.
Schumer stressed not just keeping the best cybersecurity tools in place but also the concerned departments and authorities following them. They must publicly disclose more information about such cybersecurity incidents and do everything they can in terms of helping the masses and keeping them aware and alert about it. Schumer concluded the conference by stating that if companies were not doing the right thing for the safety and security of their customers, then they must be held accountable for it.