Exec Order Could Force Software Vendors to Disclose Breaches to Federal Gov't CustomersExec Order Could Force Software Vendors to Disclose Breaches to Federal Gov't Customers
A decision on the order, which contains several recommendations, is still forthcoming.
March 26, 2021
Months after the headline-making SolarWinds hack that impacted several government agencies and Fortune 500 companies, the White House is prepping an executive order to require software vendors to notify federal government customers if they experience a breach.
Reuters is reporting the news after reviewing a draft of the order. If approved, it would impact major software companies that sell to the government, like Microsoft or Salesforce.
A National Security Council spokeswoman said a decision on the order is still forthcoming, according to Reuters.
News of an executive order on software security was first reported in February. At that time, White House officials said the order would encourage software developers to build more security into their products.
The proposal on the table contains several recommendations, including the notification requirements for service providers. Vendors would still be required to preserve digital records for investigating hacks and work with the FBI and the Homeland Security Department's Cybersecurity Infrastructure Security Agency (CISA) when responding to incidents.
Congress has tried unsuccessfully in the past to pass a national data breach notification law.
Read more here.
About the Author(s)
You May Also Like
How to Combat the Latest Cloud Security ThreatsNov 06, 2023
Reducing Cyber Risk in Enterprise Email Systems: It's Not Just Spam and PhishingNov 01, 2023
SecOps & DevSecOps in the CloudNov 06, 2023
What's In Your Cloud?Nov 30, 2023
Everything You Need to Know About DNS AttacksNov 30, 2023