The Georgia Cyber-Security Incident Reporting System provides a secure means of reporting computer security incidents to the Georgia Emergency Management and Homeland Security Agency. This system assists analysts in providing timely handling of your security incidents as well as the ability to conduct improved analysis. Please provide as much information as you can to answer the following questions to allow us to understand your incident. Do not copy and paste malicious code directly into this form. Fill out this incident report in detail.

Title 38-3-22.2 of the Official Code of Georgia Annotated requires:

  • The executive, judicial, or legislative branch of this state and any department, agency, board, bureau, office, commission, public corporation, and authority thereof; Every county, municipal corporation, school district, or other political subdivision of this state; Every department, agency, board, bureau, office, commission, authority, or similar body of each such county, municipal corporation, or other political subdivision of this state; and Every city, county, regional, or other authority established pursuant to the laws of this state.
  • To report to the director of emergency management and homeland security, or his or her designee any cyber-attack incident, data breach, or identified use of malware on an agency or computer or network determined by the director to be the type of cyber-attack, data breach, or use of malware to create a life-safety event, substantially impact the security of data and information systems, or affect critical systems, equipment, or service delivery.
  • Every utility shall report to the director of emergency management and homeland security, or his or her designee, any cyber-attack incident, data breach, or identified use of malware on a utility computer or network as such information is required to be reported to the United States government or any agency thereof. Within two hours of making such report to the United States government or any agency thereof, the utility shall provide substantially the same information to the director of emergency management and homeland security or his or her designee


Report a Cyber Incident

Any reports or records produced pursuant to this Code section shall not be subject to public inspection or disclosure under Article 4 of Chapter 18 of Title 50.