🇸🇬 MAS Guidance high

Circular on Financial Institution Incident Reporting

Published 16 December 2025 | Singapore

AI Analysis

Executive Summary

This MAS circular updates the incident reporting process for financial institutions (FIs), mandating use of a revised template on the MAS-Tx platform for reportable incidents starting 1 February 2026. It standardizes initial notifications and follow-up submissions under applicable regulations, enhancing supervisory efficiency amid rising technology risks. Compliance is critical as it aligns with MAS's focus on operational resilience, with non-adherence risking enforcement actions seen in recent AML/CFT penalties. #

What Changed

- Updated Reporting Template: FIs must use the new FI Incident Reporting Template (65.8 KB) for submitting details of reportable incidents on MAS-Tx, replacing prior formats. https://www.mas.gov.sg/regulation/circulars/circular-on-financial-institution-incident-reporting - Dual Reporting Process: Initial notification required "as soon as possible, but no later than the timeline prescribed" in relevant acts, regulations, notices, circulars, or guidelines; followed by full submission via the updated template on MAS-Tx from 1 February 2026. https://www.mas.gov.sg/-/media/mas/regulations-and-financial-stability/regulatory-and-supervisory-framework/risk-management/trs-circulars/mas-tcrs-2025-08-circular-on-financial-institution-incident-reporting.pdf - Platform Mandate: All subsequent reports

What You Need To Do

Review and familiarize with the updated FI Incident Reporting Template (downloadable from MAS site)
Integrate MAS-Tx platform access and training for compliance, IT, and risk teams to handle submissions
Update internal incident response plans to ensure initial notifications occur "as soon as possible but no later than prescribed timelines" under relevant rules (e
Conduct gap analysis against related TRM Notices (e
Test processes via simulations, as recommended in TRM guidelines for incident response readiness

Key Dates

16 December 2025 - Circular published, announcing updated template and process.

1 February 2026 - Mandatory use of updated FI Incident Reporting Template on MAS-Tx for all subsequent incident reports (initial notifications follow existing prescribed timelines). https://www.mas.gov.sg/regulation/circulars/circular-on-financial-institution-incident-reporting

Compliance Impact

Urgency: High – With the effective date of 1 February 2026 now passed (as of current date), non-compliant FIs risk immediate supervisory scrutiny, fines, or enforcement, as evidenced by MAS's S$27.45 million penalties on nine FIs for AML/CFT breaches in 2025. This matters because it operationalizes broader TRM frameworks amid cyber threats, where delayed reporting could amplify disruptions and inv

Who is Affected

Banking: Full Bank (Branch/Locally Incorporated), Merchant Bank (Branch/Locally Incorporated), Wholesale Bank (Branch/Locally Incorporated), Finance Company.Trust and Custody: Exempt Trust Company, Licensed Trust Company, Exempt Person Providing Trust Services, Approved CIS Trustee, Providing Custodial Services.Capital Markets: Benchmark Administrator/Submitter, Central Securities Depository, Clearing House, Corporate Finance Advisory, Credit Rating Agency, Dealing in Capital Markets Products, Exempt Capital Markets Services Entity, Exempt Corporate Finance Adviser Serving Accredited Investors, Holding Company of Exchange or Clearing House, Markets and Exchanges, Trade Repository.Fund Management: Licensed Fund Management Company, Registered Fund Management Company, REIT Management, Venture Capital Fund Management Company.Payments: Credit and Charge Card Licensee, Credit Bureau Licensee, Designated Payment System Operator, Designated Payment System Settlement Institution, Major Payment Institution, Money-changing Licensee, Credit/Charge Card Issuer, Standard Payment Institution.Financial Advisory: Exempt Financial Adviser, Exempt Financial Adviser Serving up to 30 Accredited Investors, Licensed Financial Adviser.Insurance: Direct Insurer (Life/General/Composite), Reinsurer (Life/General/Composite), Captive Insurer, Lloyd's Asia Scheme, Financial Holding Company (Insurance), Registered Insurance Broker, Exempt Insurance Broker, Approved Insurance Broker.Others: Product Financing. https://www.mas.gov.sg/regulation/circulars/circular-on-financial-institution-incident-reporting

References

Summary

This circular provides guidance on how financial institutions should report incidents to MAS under the various acts, regulations, notices, circulars and guidelines.

Sectors

Banking & Credit Insurance & Pensions Capital Markets & Trading Payments & E-Money

Topics

Operational Resilience / Outsourcing Technology & Cyber Reporting & Disclosure

Relevant Firm Types

BankInsurancePayment ProviderAll Firms

View Original on MAS Back to Feed