That’s about the only explanation we can come up with for Congress’ finally, miraculously, passing cybersecurity legislation after years of trying. Well, there was also the fact that congressional strategists tacked the Cybersecurity Act of 2015 onto the Consolidated Appropriations Act, which was necessary to fund most of the federal government for 2016 and thus could not be voted down or vetoed without major political consequences. Despite the long wait, the Cybersecurity Act does not advance the ball on cybersecurity very far. But it does provide sounder footing for companies that monitor their networks to protect against cyber threats, and potentially authorizes communications carriers to engage in even broader monitoring for “cybersecurity purposes” generally. It also provides legal immunity for companies that share cyber threat data with other companies or the government. Consider this the political equivalent of the Redskins’ making the playoffs ‒ weak, but it’s a start.