Cybersecurity, Privacy, & AI

Trending Now

Pentagon Cyber Official Calls Advanced AI ‘Revolutionary Warfare’ • NIST Aims for Summer Release of AI Cyber Guidelines • President Trump’s Cyber Strategy: Cross-Sector Implications for U.S. and UK Businesses • States Are ‘Laboratories of Democracy’ for Privacy Regulation as Federal Legislation Stalls • Daybreak Is OpenAI’s Answer to the AI Arms Race in Cybersecurity

Published on January 22, 2021 • Cyber

Banking Agencies Propose New Reporting Rules for Cyber Incidents

Federal banking agencies are requesting feedback on a joint proposal that would expand and hasten reporting requirements for computer security incidents. The Treasury Department’s Comptroller of the Currency, the Federal Reserve, and the FDIC are seeking to create an “early alert” requirement that covers a wider range of incidents than current regulations cover, and with a tighter timeframe.

An incident requiring notification could include “major computer-system failures, cyber-related interruptions, such as coordinated denial of service and ransomware attacks, or other types of significant operational interruptions.” Banks would need to report an incident no more than 36 hours after they come to “believe in good faith” it has occurred. Bank service providers would have an obligation to “immediately” report such incidents to their bank customers.

Source:

NextGov: Agencies Propose Faster, Broader Reporting of Cyber Incidents for Banks

Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–Saturday — Subscribe here.