Important Update: New Cyber Incident Reporting Process for DoD Contractors Effective June 6, 2025
To our valued Defense Industrial Base (DIB) partners,
The Department of Defense (DoD) has recently announced a critical update to the cyber incident reporting process for contractors handling Controlled Unclassified Information (CUI) or operating under DFARS clauses 252.204-7012 and 252.239-7010.
What’s Changing?
As of June 6, 2025, the current DISA-hosted cyber incident reporting portal will be decommissioned. The familiar DIBNet URL (https://dibnet.dod.mil) will remain active but will redirect to the new DCISE Cybersecurity Reporting Portal at: https://www.dc3.mil/Missions/DIB-Cybersecurity/DIB-Cybersecurity-DCISE/
The new Incident Reporting Site will be: https://icf.dcise.cert.org
Moreover, the new reporting process for cyber incidents will continue to use the new ICF portal to input your cyber incident details. Upon submission, the system will generate a .xml file that you must submit separately to DC3 via encrypted email – or DoD SAFE to comply with DFARS 252.204-7012. Once received, DC3 will confirm your submission and provide an incident number, and a text-formatted copy of your report (ICF file) for your records.
All in all, this transition aligns with federal cybersecurity modernization and cost efficiency initiatives, and DC3 will continue to serve as the operational point of contact for cyber incident reporting related to unclassified contractor systems.
In sum, it’s important to remember to bookmark the new URLs listed above for future reference, distribute the [DCISE submission Guidance Checklist] within your organization, update internal incident response procedures to include .xml file handling and secure submission to DC3, and train your cybersecurity and compliance staff on the updated workflow. Failure to follow this new procedure may result in non-compliance with DFARS reporting requirements – don’t delay.
Stay vigilant, stay secure. Your efforts help protect national security and the integrity of the defense supply chain.
📸 Photo by Marine Corps Cpl. Malia Sparks
Learn more with us today at cmmccompliance.us/contact-us
- The Brea Networks Cybersecurity Compliance Team
