Overview

• The 2015 Cybersecurity Information Sharing Act is scheduled to expire at the end of September without completed congressional approval.
• The statute’s liability and antitrust shields underpin companies’ willingness to share threat indicators with federal agencies, protections attorneys say are critical.
• A WilmerHale client alert and industry groups warn a lapse would sharply curtail voluntary information flows from sectors including finance, healthcare, and telecommunications.
• Senator Gary Peters is pressing for a 10-year clean extension as Senate talks weigh privacy and FOIA proposals, including a push from Rand Paul.
• Observers expect eventual reauthorization, potentially retroactive, but caution that any gap could disrupt sharing as experts press for updates covering behavioral telemetry, AI-driven automation, and reciprocity.