# Cyber Incident Notification Requirements for Federally Insured Credit Unions
> **US National Credit Union Administration** · Final rule. · Published 2023-03-01 · Effective 2023-09-01 · 88 FR 12811
## Document
- **Document number:** 2023-03682
- **Category:** final-rule
- **Agency:** US National Credit Union Administration
- **Federal Register citation:** 88 FR 12811
- **CFR reference:** 12 CFR 748
- **Publication date:** 2023-03-01
- **Effective date:** 2023-09-01
## Abstract

The National Credit Union Administration (NCUA or agency) is amending Part 748 of its regulations to require a federally insured credit union (FICU) that experiences a reportable cyber incident to report the incident to the NCUA as soon as possible and no later than 72 hours after the FICU reasonably believes that it has experienced a reportable cyber incident. This notification requirement provides an early alert to the NCUA and does not require a FICU to provide a detailed incident assessment to the NCUA within the 72-hour time frame.

## Source
- [Federal Register document](https://www.federalregister.gov/documents/2023/03/01/2023-03682/cyber-incident-notification-requirements-for-federally-insured-credit-unions)
---
*AI Analytics · CC0 1.0*