New cybersecurity reporting requirements for banks

The Federal Reserve Board of Governors (FRB), the Federal Deposit Insurance Corporation (FDIC), and the Office of the Comptroller of the Currency (OCC) approved a final rule that places reporting requirements on banks and banking service providers. Under this new rule, banks must report any "computer security incident" that rises to the level of a "notification incident" within 36 hours to its primary federal regulators