China plans to introduce the management measures for reports of cyber security incidents, and operators who have severely harmful consequences from punishment, missed reporting, lies, or concealing cyber security incidents.
China National Internet Information Office was announced on the official website on Friday (December 8) that the management measures (drafts for comments) have been drafted on the official website of the network security incident.The deadline for feedback is January 7, 2024.
According to the draft of the solicitation, the management measures for network security incidents are formulated in order to regulate the report of cyber security incidents, reduce losses and harm caused by cyber security incidents, and maintain national network security.
Operators should start emergency plans to deal with them in a timely manner when having a cyber security incident.According to the graded guidelines of network security incidents, if a large, major or particularly major cyber security incident, it shall be reported within one hour.
The content of the report includes at least the name of the incident and the basic situation of the facilities, systems, and platforms of the incident; the attack software attack event shall also include the amount, method, and date required to pay the amount of ransom.
If the operator's late reporting, missed reports, lies, or concealing cyber security incidents will cause major harmful consequences, the operators and relevant responsible persons will be punished according to law.
China National Computer Virus Emergency treatment Center released a survey report on Northwestern Polytechnical University in September last year.The report was preliminarily determined that related attacks came from the Specific Invasion Action Office (TAO) under the US National Security Agency.CCTV News later reported in September this year that the investigation unit successfully extracted spy software samples developed by the National Security Agency during the investigation of the Northwestern Polytechnical University of China University of Technology.
The Jianghan Branch of the Wuhan Public Security Bureau also reported in July this year that some network equipment of the Earthquake Monitoring Center of the Wuhan Emergency Administration was attacked by the network, and the attack was initiated by hackers and criminals with government backgrounds abroad.Essence