CISA seeks comment on cyber incident reporting revisions for critical infrastructure operators, others

The DHS Cybersecurity and Infrastructure Security Agency is seeking public comments on a revised form used by companies and critical infrastructure operators to report cyber incidents including malware, a move intended to provide greater specificity on the causes and sources of an attack.

“This information is used by DHS to conduct analyses and provide warnings of system threats and vulnerabilities, and to develop mitigation strategies as appropriate,” according to the agency's Federal Register notice setting a Nov. 4 comment...