Report an Incident

If you are a CNI organisation and you have encountered or suspect a cyber threat, please complete and return an Incident Reporting Form.

All incident reports provided to the CCIP are treated in the strictest of confidence. Please see our Confidentiality Charter for more details. Read More


New at CCIP

Current e-Bulletin The CCIP e-Bulletin provides a snapshot of security related news
Read More


New Zealand Government Website

Why Inform CCIP?

In New Zealand, there is a need for reporting the discovery of a cyber incident for the following reasons:
  • To enable the CCIP to assess the severity and extent of the threat;
  • To minimise the consequences resulting from cyber incidents;
  • To ensure that there is a coordinated response to cyber incidents; and
  • To provide ongoing support and assistance to the affected organisation.

  • The primary source of incident information comes from the community itself.
    It is extremely important that all cyber incidents are reported to the CCIP at incidents@ccip.govt.nz

    When reporting a cyber incident, one or more of the following categories should be used:
    • Successful unauthorised access
    • Reconnaissance scans, network probes or attempted access
    • Denial of Service (DoS)
    • Data corruption and/or loss
    • Data interception, monitoring and/or exfiltration
    • Actual malicious software infection
    • Other anomalous behaviour, malware, hacking or exploitation of new vulnerabilities (zero-day) in hardware or software systems.

    CCIP Confidentiality Charter

    The CCIP's Confidentiality Charter is designed to help Critical National Infrastructure (CNI) organisations interact with the CCIP in a secure, efficient and confidential manner in order to exchange information, report malicious cyber activity or to simply seek advice.