Cyber Extortion and Ransomware (Reporting) Bill

Commons bill Private Members' Bill (Ten Minute Rule) 2025-26

A Private Members' Bill introduced through a 10-minute speech in the Commons, used primarily to draw attention to an issue rather than to legislate. Most do not progress beyond First Reading.

Second reading · Commons
Sponsor
Bradley Thomas (Conservative)
Introduced
21 October 2025
Last activity
21 October 2025
About this bill

A Bill to require a company that meets specified criteria to report any cyber extortion or ransomware attack on the company to the Government within a specified time after the attack; to make provision about the content of such reports, including a requirement to provide information about any payments made; and for connected purposes.

Parliamentary stages

Stages shown in blue link to the debate transcript. Not sure what these stages mean? How Parliament makes laws →

Commons
First reading 21 Oct 2025
Second reading
Lords

Not yet reached

Final stages

Not yet reached

Parliamentary information from bills.parliament.uk ↗, licensed under the Open Parliament Licence v3.0. Explanatory Notes extracts are verbatim from Parliament's published documents.