On April 19, 2024, U.S. Customs and Border Protection (CBP) issued a bulletin via its Cargo Systems Messaging Service (CSMS) announcing guidance on best practices for reporting of cyber-attacks to the agency.

The guidance document emphasizes the reporting of "indicators of compromise" (IOCs) and how to do so. According to the CSMS, "IOCs are forensic evidence of a network breach - such as unusual network traffic or anomalies in user activity - that can provide insight into attack methods and trends which, in turn, inform prevention, mitigation, and response measures for future incidents." 

The guidance document also encourages reporting of IOCs to help CBP limit the impact of cyber-attacks and facilitate reconnection of CBP systems access for those impacted.

The guidance document was published in March of 2024. 

The CSMS can be found here:
https://content.govdelivery.com/bulletins/gd/USDHSCBP-397828b?wgt_ref=USDHSCBP_WIDGET_2 

The CBP guidance document can be found here: 
https://www.cbp.gov/document/guidance/indicators-compromise-and-other-cyber-incident-reporting-guidance