Cyber Extortion and Ransomware (Reporting) Bill 2024-26
require a company that meets specified criteria to report any cyber extortion or ransomware attack on the company to the Government within a specified time after the attack; to make provision about the content of such reports, including a requirement to provide information about any payments made; and for connected purposes.
Private Members' Bill (under the Ten Minute Rule)
The Cyber Extortion and Ransomware (Reporting) Bill is a Ten Minute Rule Bill tabled by Bradley Thomas.
Is this Bill currently before Parliament?Yes. This Bill was introduced on 21 October 2025 and is currently before Parliament.
Whose idea is this Bill?As a Private Members' Bill, this Bill represents the individual initiative of an MP (Bradley Thomas), not the Government.
What type of Bill is this?A Ten Minute Rule Bill is a process of tabling a bill, where an MP has 10 minutes to advocate for their legislation to the Commons and the Minister responsible.
So is this going to become a law?Ten Minute Rule Bills do not receive any legislative priority and will only become an Act of Parliament if there is unanimous consent of MPs.
However, the legislative proposal may be adopted by the Government, particularly if the proposed legislation can be implemented without a Bill.
Would you like to know more?See these Glossary articles for more information: Ten Minute Rule Bill, Private Members Bill, Process of a Bill
Official Bill Page All Bill Debates
Next Event: Friday 29th May 2026 - 2nd reading
Last Event: Tuesday 21st October 2025 - 1st reading (Commons)
Bill Progession through Parliament