By Thomas Montana
A local cybersecurity expert says New York has waited too long to address the cybersecurity threat.
Ed Eisenstein, Chief Executive Officer at United Network Associates in Farmingdale, believes that New York is lagging behind in its cybersecurity efforts. This is coming after Governor Kathy Hochul recently announced that legislation aimed at enhancing cybersecurity across New York is now in effect.
“Here in New York, we are keeping up with technology’s fast-paced evolution and are resilient in the face of cybersecurity threats,” Hochul said. “This legislation strengthens our response and provides our state’s Department of Homeland Security and Emergency Services the necessary information to handle reports of attacks and keep New Yorkers safe.”
Eisenstein scoffed at the idea. “I mean, New York State leading the cyberwar? Talk about late to the party,” he said. “After trillions are stolen and after 20 years of active cyberattacks, now the New York State government wants to help. It’s a little late.”
“It’s easy to say, we care about cybersecurity, but when recommended to perform vulnerability scans on their entire network, it is not done,” Eisenstein continued. “Fact is that our government has instilled Cybersecurity measures for American businesses, when government can’t even come close to meeting those very standards itself today.”
The bill, which was first announced in Hochul’s 2025 State of the State address, requires all municipal corporations and public authorities to report cybersecurity incidents within 72 hours and ransomware payments within 24 hours to the New York State Division of Homeland Security and Emergency Services. Within 30 days of making a ransomware payment, the victim must provide the payment amount, a justification for why it was necessary and an explanation of the diligence performed to ensure the payment was lawful.
“Protecting the public is government’s most important responsibility, but attacks on critical infrastructure put essential services and the people who rely on them at risk,” said State Senator Monica R. Martinez (D-Brentwood), who sponsored the bill. “This bill gives municipalities the structure, support, and accountability they need to protect residents and taxpayers from prolonged disruption in the event of a cyberattack.”
However, Eisenstein questions the timeliness of Hochul’s announcement. Eisenstein implored local and state governments to run vulnerability scans on their cyber infrastructure immediately.
“Before [the governor] starts making more laws that it cannot even maintain for itself, our governments should actually perform vulnerability scans to detect BAD actors on the network instead of making these generic blank statements that are unattainable today,” he said. “In fact, New York State needs to be responsible and correct their network issues and vulnerabilities with a group effort of all the counties to perform ongoing unified vulnerability scans instead of making laws about something that cannot be achieved.”