Advertisement
Under China’s new security rules, internet operators must report hacks and cybercrimes within an hour
- Cyberspace Administration of China says the regulations could reduce loss and damage, as well as protecting national internet safety
- Operators must report damage caused by the incidents and measures taken, probable cause, tips for investigation, the path of attack and existing loopholes
Reading Time:2 minutes
Why you can trust SCMP
Internet operators will be required to report major cybersecurity incidents – including hacking, infrastructure breakdown and key data leaks – to the Chinese authorities within an hour of them occurring or risk severe punishment, according to draft regulations from the country’s internet watchdog.
Advertisement
The Cyberspace Administration of China (CAC) published the new rules on Friday to solicit public opinion. The CAC said regulating the reporting of cybersecurity incidents could reduce the loss and damage they caused, as well as protect national internet safety.
According to the draft, all operators must report the incidents to local or national cyberspace offices, and those who work with “key information infrastructure” or face crime-related incidents should also report breaches to the police.
Cybersecurity incidents are defined as “incidents that cause harm to networks, information systems or data because of human factors, software or hardware failures or natural disasters”.
Advertisement
Advertisement