This bill tells the Treasury Department to study how well the government and the financial industry work together to prevent and respond to ransomware attacks on banks and other financial institutions. Treasury must send Congress a public report within one year that covers how agencies and companies coordinate, whether agencies get attack reports quickly, how useful those reports are for stopping and investigating crimes, and whether new laws are needed. The report can suggest ways to strengthen partnerships, share incident reports faster, and speed up response time. It will be unclassified but may include a classified annex. Treasury must also brief Congress within 15 months on the findings .

What this means for people and communities:

• Who is affected: banks and credit unions, government cyber teams, and cybersecurity service firms that help financial institutions respond to attacks.
• What changes: no new rules for customers now; this is a fact-finding step that could lead to better coordination, quicker alerts, and stronger protections against ransomware in the future.
• When: the report is due within one year of the law taking effect, and a briefing to Congress is due within 15 months.