Newly proposed legislation would strengthen U.S. defenses against ransomware attacks on critical infrastructure operations and impose sanctions on foreign nations that harbor hackers.Senators Marco Rubio (R-FL), who vice chairs the Senate Intelligence Committee, and Dianne Feinstein (D-CA) have introduced the Sanction and Stop Ransomware Act. The bill would put ransomware in the same category as terrorism by sanctioning nations that back cyber attackers and require the President to impose sanctions consistent with those levied on nations that underwrite acts of terror.The Sanction and Stop Ransomware Act would:(Note: MSSP Alert has bolded the bullet point above to emphasize the service provider implications.)
- Require the development of cybersecurity standards for critical infrastructure entities, consistent with existing federal regulations and existing National Institute of Standards and technology (NIST) levels.
- Require the development of regulations for cryptocurrency exchanges operating to reduce anonymity of accounts and users suspected of ransomware activity and make records available to the U.S. Government in connection with ransomware incidents.
- Direct the Secretary of State, in consultation with the Director of National Intelligence (DNI), to designate as a state sponsor of ransomware any country the government of which the Secretary has determined has provided support for ransomware demand schemes, including by providing safe haven for individuals or groups.
- Require the President to impose sanctions and penalties on each state designated as a state sponsor of ransomware, consistent with sanctions and penalties levied on and against state sponsors of terrorism.
- Require federal agencies, government contractors, and critical infrastructure owners and operators to report the discovery of ransomware operations within 24 hours, consistent with the Rubio-Warner-Collins Cyber Incident Notification Act.



