The only protection most organizations have against these attacks is tight and effective cybersecurity. These attacks have drawn government attention and sparked calls for liability protection against malicious intrusions. If organizations want this protection, they need to step up their game to implement better cybersecurity practices. A number of states have quietly moved forward with their own liability exemption measures that seek to boost best cybersecurity best practices. Ohio became the first state in the country to enact a safe harbor for organizations hit by a data breach in 2018. Connecticut has agreed to hear a bill, HB No. 6607, An Act Incentivizing the Adoption of Cybersecurity Standards for Businesses”]