The Solarium Commission’s most ambitious proposal lacks a game plan

With help from Eric Geller

— The Cyberspace Solarium Commission has been trying to update a Cold War-era law to prepare for the mother-of-all cyber emergencies. But industry says there aren’t many details about what this would look like.

— As the Biden administration ramps up its crackdown on cybercriminal use of cryptocurrencies, the industry has a familiar refrain: We’re not the only problem.

— Missouri Gov. Mike Parson’s recent threat against a journalist for discovering a data security vulnerability is part of a decades-long trend of prosecuting security researchers for such discoveries.

HAPPY MONDAY, and welcome back to Weekly Cybersecurity! I’m your host, Sam Sabin, and it seems I’m the one person on the planet who watched the premiere of Succession and didn’t tweet about it? Don’t worry, my inbox is still open for all hot, and even lukewarm, takes.

Have tips, secrets or cat photos to share with MC? Send what you’ve got to [email protected]. Stay up to date by following @POLITICOPro and @MorningCybersec. (Full team contact info below.) Let’s get to it:

WHAT’S THE HOLD UP — Despite Congress’ heightened focus on cybersecurity in the annual defense budget and infrastructure packages, the Cyberspace Solarium Commission’s most ambitious policy ideas are still struggling to gain political momentum in Congress.

The most distinctive example: a proposal to include cybersecurity firms under the 1950 Defense Protection Act, which would allow the government to tap private cyber firms for help in emergencies such as a debilitating attack on a critical infrastructure firm or, most likely, a pandemic-sized cyberattack on the supply chain. As Eric reports for Pros this morning, cybersecurity firms and their customers have been…