2.5. Secure communications
Information contained within incident reports can be both commercially and market sensitive, and therefore needs to be handled appropriately by all parties involved. The diverse nature of reporting mechanisms used by authorities presents operational challenges, as highlighted in Section 2.1. From a security perspective, FIs need to ensure that they can meet these varied requirements at all times. From an FI perspective, there may be insufficient clarity or confirmation that certain authority reporting platforms meet shared security requirements, thereby exposing FIs to potential sources of risk, particularly as unencrypted e-mail is the most common way FIs report a cyber incident [FSB (2021), page 7.]. FIs may also have concerns about reporting platforms being actively targeted by threat actors.