Although one segment of the proactive cybersecurity debate—e.g., hack back—has long been derided as a policy option carrying with it great risks of escalation, among other concerns, elements within the U.S. Congress and abroad are actively pushing to give companies a freer hand at defending...

Although there is a spectrum of cybersecurity regulatory frameworks emerging around the world ranging from more state-centric approaches to voluntary initiatives, more and more nations — including the United States — seem to be settling on a bottom-up approach to enhancing private-sector...