Letter to Credit Unions (25-CU-02) Cyber Incident Notification Requirements Update to Letter 23-CU-07
This letter provides an update to Letter to Credit Unions 23-CU-07 and announces the availability of a new cyber incident reporting webform. To aid in incident reporting, the NCUA is enclosing an updated quick reference guide.
The NCUA developed the webform as a convenient and secure method for credit unions to report cyber incidents to the agency.
How to Report
To report a cyber incident, federally insured credit unions may notify the NCUA through one of the following channels:
Complete the Cyber Incident Credit Union Reporting System online form to send a secure incident report.1 This webform is mobile device friendly and is available under the Cybersecurity Resources webpage on NCUA.gov.
Call the NCUA at 1.833.CYBERCU (1.833.292.3728) and leave a voicemail.
Email the NCUA utilizing the Secure Email Message Center to send a secure email to cybercu@ncua.gov.2
Credit unions are strongly advised to maintain a high level of vigilance and continually enhance their ability to respond to evolving cybersecurity threats.
For access to more cybersecurity information and resources, including detailed information on cyber incident reporting, credit unions are encouraged to visit the NCUA’s Cybersecurity Resources webpage. These resources provide valuable information and guidance to help credit unions strengthen their cybersecurity stance and stay informed of the latest developments.
Sincerely,
Todd M. Harper
Chairman