CYBER INCIDENTS: CISA UNVEILS NEW CYBER INCIDENT REPORTING PORTAL

In all efforts to contain cyber incidents and ransomware attacks, the Cybersecurity and Infrastructure Security Agency (CISA) has unveiled a streamlined service for reporting cyber incidents as it prepares in serious readiness for new reporting requirements that will take effect next year.

The portal “https://myservices.cisa.gov/irf” was rolled out this week by the agency. With this new portal, users now can save and update reports, share reports with third parties, and search and filter reports. CISA’s executive assistant director for cybersecurity Jeff Green in a statement said, “any organization experiencing a cyber attack or incident should report it – for its own benefit, and to help the broader community.”

“CISA and our government partners have unique resources and tools to aid with response and recovery, but we can’t help if we don’t know about an incident,” the executive assistant continued by saying, “sharing information allows us to work with our full breadth of partners so that the attackers can’t use the same techniques on other victims and can provide insight into the scale of an adversary’s campaign. CISA is excited to make available our new portal with improved functionality and features for cyber reporting.”

CISA released proposed rules for CIRCIA earlier in March this year, and the law requires CISA to issue a final rule by October 2025. Hence, this new portal launched is in readiness of CISA to implement the landmark Incident Reporting for Critical Infrastructure Act (CIRCIA).

Organizations across all 16 critical infrastructure sectors are required by this law to report serious cyber incidents to CISA within 72 hours and ransomware attacks within 24 hours.

The service features the portal is expected to provide are “enhanced functionality including integration with Login.gov credentials” and equally enables users to informally chat with CISA officials.