Under China’s new security rules, internet operators must report hacks and cybercrimes within an hour
- Cyberspace Administration of China says the regulations could reduce loss and damage, as well as protecting national internet safety
- Operators must report damage caused by the incidents and measures taken, probable cause, tips for investigation, the path of attack and existing loopholes
According to the draft, all operators must report the incidents to local or national cyberspace offices, and those who work with “key information infrastructure” or face crime-related incidents should also report breaches to the police.
02:17
China's telecoms fraud crackdown with Myanmar may help workers trapped in scam rooms
Cybersecurity incidents are defined as “incidents that cause harm to networks, information systems or data because of human factors, software or hardware failures or natural disasters”.
The operators are required to report damage caused by the incidents and measures taken, the probable cause, tips for investigation – including anything known about the attacker – the path of attack and existing loopholes, the draft said.
The draft especially stressed that major incidents should be reported within an hour.
It describes three levels of incident, with the most severe level including leaks affecting the personal data of more than 100 million people, “affecting the work and lives of over 30 per cent of the population in a province”, “key information infrastructure disconnected for six hours” and harmful information viewed more than 1 million times or displayed for more than six hours on news media or government websites.
