The U.S. Department of Homeland Security (DHS) has issued guidelines to help organizations properly report cyber incidents to the proper federal office.
Cyber Incident Reporting covers everything from defining what constitutes a cyber incident to when it is time to contact law enforcement. DHS said private sector groups should pull the trigger and report a problem if there is a significant loss of data or if a system is being controlled by an unauthorized group. Also if there is a loss of data, a large number of victims, if malware is detected on critical systems, if national security, economic security or public health and safety.
“Private sector entities experiencing cyber incidents are encouraged to report a cyber incident to the local field offices of federal law enforcement agencies. The federal agency receiving the initial report will coordinate with other relevant federal stakeholders in responding to the incident,” the report stated.