Skip to main content
United States flag An official website of the United States government
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Appendix B: Examples of Incidents that Likely Would Not Qualify as Reportable Cyber Incidents

  • Phishing e-mail caught by spam filters not acted upon by employees.
  • Unsuccessful login attempts without evidence of an unauthorized access.
  • Short-term minor system outages due to technical issues.
  • Malware detected and removed by antivirus software without causing harm.
  • Isolated incidents of fraud not involving cyberattacks.
  • Lost paper copies of member statements.1
  • Security incidents involving only non-sensitive or public information.
  • Denial of service attack with minimal impact on service availability.
  • Password reset attempts without evidence of unauthorized access.
  • Suspicious emails reported by employees but not leading to compromise.
  • Failed social engineering attempt without any impact.
  • Employee’s unauthorized use of non-critical software without data access or exfiltration.
  • Isolated incidents of a misdirected email with no significant impact.
  • Isolated incidents of accidental disclosure, with no significant impact.
  • Loss of availability due to a physical event, such as a natural disaster.2


1 Appendix B to Part 748. Federally insured credit unions would use the reporting guidelines in Appendix B to part 748.

2 Catastrophic Act Reporting. Federally insured credit unions are required to notify the NCUA within five business days of any catastrophic act occurring at its office(s).

Last modified on