"Beijing will soon expect Chinese network operators to 'fess up to serious cyber incidents within an hour of spotting them - or risk penalties for dragging their feet. From November 1, the Cyberspace Administration of China (CAC) will enforce its new National Cybersecurity Incident Reporting Management Measures, a sweeping set of rules that tighten how quickly incidents must be disclosed."
"The rules apply to a broad category of "network operators," which in China effectively means anyone who owns, manages, or provides network services, and mandate that serious incidents be reported to the relevant authorities within 60 minutes - or in the case of "particularly major" events, 30 minutes."
The Cyberspace Administration of China will enforce the National Cybersecurity Incident Reporting Management Measures starting November 1. The measures require a broad set of network operators—defined as entities that own, manage, or provide network services—to report serious cybersecurity incidents to relevant authorities within 60 minutes. For particularly major incidents the reporting window narrows to 30 minutes. The rules constitute a stricter disclosure timeline and carry potential penalties for operators that delay or fail to report. The measures expand regulatory obligations across many organizations that operate networks in China and prioritize rapid notification to state authorities.
Read at DataBreaches.Net
Unable to calculate read time
Collection
[
|
...
]