H.R. 807 (119th)Bill Overview

Public and Private Sector Ransomware Response Coordination Act of 2025

Finance and Financial Sector|Finance and Financial Sector
Cosponsors
Support
Republican
Introduced
Jan 28, 2025
Discussions
Bill Text
Current stageCommittee

Referred to the House Committee on Financial Services.

Introduced
Committee
Floor
President
Law
Congressional Activities
01 · The brief
Plain-English summaryWhat this bill actually does

Requires the Secretary of the Treasury to produce, within one year, an unclassified report (with optional classified annex) on public-private coordination in preventing and responding to ransomware attacks on financial institutions. The report must assess current coordination, interagency information sharing and timeliness, utility of reported information, reporting requirements, reasons for delayed reporting by institutions, and recommend policy initiatives; Treasury must brief relevant congressional committees within 15 months.

Why people may split

Libs emphasize transparency and privacy safeguards; conservatives prioritize limited federal intrusion

Watch point

Relative to its intended legislative type, this bill is a well-specified reporting mandate: it clearly defines the subject matter, deliverables, timeline, and recipients and enumerates the topics the report must address.

Requires the Secretary of the Treasury to produce, within one year, an unclassified report (with optional classified annex) on public-private coordination in preventing and responding to ransomware attacks on financial institutions.

The report must assess current coordination, interagency information sharing and timeliness, utility of reported information, reporting requirements, reasons for delayed reporting by institutions, and recommend policy initiatives; Treasury must brief relevant congressional committees within 15 months.

Passage70/100

Short, technical oversight bills on cybersecurity historically clear committees and pass; limited fiscal impact reduces barriers.

CredibilityAligned

Relative to its intended legislative type, this bill is a well-specified reporting mandate: it clearly defines the subject matter, deliverables, timeline, and recipients and enumerates the topics the report must address. It leaves methodological, resource, and interagency-compulsion details to the executive branch.

Contention28/100

Libs emphasize transparency and privacy safeguards; conservatives prioritize limited federal intrusion

02 · What it does

Who stands to gain, and who may push back.

Likely benefits vs burdens50% / 50%
Likely helpedLikely burdened

These are examples from the analysis, not a ranked list of the most-affected groups.

Likely helped
  • Potential benefitMay identify coordination gaps and recommend targeted fixes to reduce systemic cyber risk in finance.
  • Potential benefitCould lead to standardized incident reporting, enabling faster government investigations and responses.
  • Potential benefitMay increase information sharing between banks and agencies, improving detection and mitigation of threats.
Likely burdened
  • Potential burdenAdditional reporting expectations could increase compliance costs and administrative burdens on financial institutions.
  • Potential burdenUnclassified public reporting may risk exposing sensitive incident details, raising privacy and competitive concerns.
  • Potential burdenFirms might delay disclosure to avoid regulatory, reputational, or investigative consequences, reducing timely transpar…
03 · Why people split

Why the argument around this bill splits.

Libs emphasize transparency and privacy safeguards; conservatives prioritize limited federal intrusion
Progressive90%

Generally supportive: sees the report as a necessary oversight step to strengthen consumer protections and financial-system resilience.

Wants the report to produce concrete recommendations, transparency, and proposals for funding implementation.

Worried that classified annexes or vague recommendations could hide shortcomings or enable privacy-invading data sharing.

Leans supportive
Centrist80%

Generally favorable as a measured oversight and information-gathering exercise to inform policy.

Views the bill as a low-cost first step but expects clear cost estimates, role clarity, and metrics to avoid duplicative or open-ended mandates.

Wants the report to be actionable and to identify whether legislation is truly needed.

Leans supportive
Conservative60%

Cautious but broadly supportive on national-security grounds; values any step strengthening financial-system defenses.

Wary of downstream regulatory expansion, mandatory new reporting, or burdensome compliance costs for private firms.

Prefers preserving private-sector flexibility and protecting proprietary information.

Split reaction
04 · Can it pass?

The path through Congress.

Introduced

Reached or meaningfully advanced

Committee

Reached or meaningfully advanced

Floor

Still ahead

President

Still ahead

Law

Still ahead

Passage likelihood70/100

Short, technical oversight bills on cybersecurity historically clear committees and pass; limited fiscal impact reduces barriers.

Scope and complexity
24%
Scopenarrow
24%
Complexitylow
Why this could stall
  • No cost estimate or staffing/resource details included
  • Possible overlap with existing agency reports or authorities
05 · Recent votes

Recent votes on the bill.

No vote history yet

The bill has not accumulated any surfaced votes yet.

06 · Go deeper

Go deeper than the headline read.

Included on this page

Libs emphasize transparency and privacy safeguards; conservatives prioritize limited federal intrusion

Short, technical oversight bills on cybersecurity historically clear committees and pass; limited fiscal impact reduces barriers.

Unlocked analysis

Relative to its intended legislative type, this bill is a well-specified reporting mandate: it clearly defines the subject matter, deliverables, timeline, and recipients and enumerates the topics the report must address…

Go beyond the headline summary with full stakeholder mapping, legislative design analysis, passage barriers, and lens-by-lens tradeoff breakdowns.

Perspective breakdownsPassage barriersLegislative design reviewStakeholder impact map
Open full analysis