Canara Bank has submitted Certificates of Compliance and Reports on the Securities Exchange Board of India - Cybersecurity and Cyber Resilience Framework (SEBI-CSCRF) as per SEBI Circular No. SEBI/HO/ITD-1/ITD CSC EXT/P/CIR/2024/113 dated August 20, 2024. The Vulnerability Assessment and Penetration Testing (VAPT) report, conducted by M/s AKS IT Services Pvt. Ltd. for the period October 1, 2025, to November 17, 2025, identified critical vulnerabilities: 54 critical, 107 high, 5720 medium, and 594 low. The Cyber Audit Report, conducted by M/s Control Case International Private Limited for the period September 8-12, 2025, found the bank compliant with various SEBI CSCRF guidelines across its DP Secure, CITOS, Kondor Plus, and ASBA applications. The report noted that the bank is exploring the implementation of an automated Cyber Capability Index (CCI) tool with a tentative timeline of March 31, 2026, and currently prepares the CCI report manually. Canara Bank is classified as a Qualified Regulated Entity (Qualified RE) due to its Depository Participant (DP) registration. However, the bank plans to transfer its DP accounts to its subsidiary, CanBank Securities Limited (CBSL), which is in the process of obtaining a CDSL license. Upon successful transfer, Canara Bank will surrender its DP license and fall under the Small Size RE category. All applicable reports, including the Cyber Audit Report, SOC Efficacy Report, and VAPT Report, are to be submitted to SEBI, NSE/BSE, and CDSL within December 2025, signed by the MD & CEO.