The Defense Department’s new cybersecurity regulations for the defense industry will greatly expand the reporting requirements for the department’s contractors and subcontractors and could influence cloud-computing approaches in other sectors, according to attorneys. Contractors and subcontractors are obligated under the interim rule to report not merely confirmed breaches but also any "cyber incidents that result in an actual or potentially adverse effect on a covered contractor information system or covered defense information residing therein, or on a contractor's ability to...
