US banks to report cybersecurity incidents within 36 hours

US banks will now have to report significant cybersecurity incidents to the government within 36 hours, according to sources reported by Bloomberg.

The news comes as banks in the UK are also facing scrutiny from regulators regarding the quality of their cyber defences.

A Bank of England (BoE) backed project set to test the IT resilience of the UK’s financial services (FS) sector was opened to FS firms of all sizes in October, according to sources reported by the Financial Times.


The US rule will apply to incidents expected to materially impact a bank's ability to conduct its operations, or which could impact the stability of the financial sector according to the sources.

Previously, there were no specific laws in the US governing how quickly banks needed to report cyber incidents.

The rule, approved by the Federal Reserve, Federal Deposit Insurance Corporation, and Office of the Comptroller of the Currency, issued on Thursday is set to come into effect on May 1.

The sources said the new rule will also impact third parties who provide services to banks.

    Share Story:

Recent Stories


The Future of Intelligent Finance
FStech Group Editor Mark Evans sits down with Jason Cao, President of Global Financial Services Business Unit, Enterprise BG at Huawei ahead of its Intelligent Finance Summit which was held on 3rd and 4th of June in Shanghai. This Q&A delves into key trends in digital transformation of the financial services industry as well as a look at how data, robotic infrastructure, intelligent storage and innovative technologies are shaping the future for FSIs.

The Rise of Instant Payments
Instant payments are creating new business opportunities for banks by providing more touchpoints than ever. With these evolutions underway, Featurespace brought leading industry experts together to discuss how they are protecting customers from fraudsters in real time, utilizing innovative and disruptive solutions to reduce fraud. Click here to find out more.

Offloading Cyber Risk in the Cloud
As cyber attacks and data breaches are in the news on an increasingly regular basis - with regulatory penalties and customer trust on the line for financial services firms - it has never been more crucial to be compliant in the cloud.

This video, with Akamai’s EMEA director of security technology and strategy Richard Meeus, will help explain what your company can be doing to make sure it’s not embroiled in the next big fine or front-page scandal.