According to the Washington Post, the Transportation Security Administration, a subdivision of the Department of Homeland Security, requires pipeline companies to report violations and other cybersecurity incidents.
It will also lay down rules on how different infrastructure systems can be protected against digital threats.
Any anomaly that leads to companies paying ransoms to get their systems back must also be reported to the Transportation Security Administration (TSA) and the Cybersecurity and Infrastructure Security Agency (CISA).
Although the guidelines for companies are voluntary and companies are free to refuse inspections of their systems by the TSA, an anonymous source within the agency told The Washington Post that failure to comply with the upcoming requirements will likely result in financial penalties, which will be quite substantial in persuading companies to participate in the activity.
For more information, read the original story in The Verge.