China cyber incident reporting rule for network operators
Public Sector Action
Summary
Hide ▲
Show ▼
China's Cyberspace Administration issued new cyber-incident reporting rules that require operators in China and its territories to notify authorities within 60 minutes for key infrastructure and within 30 minutes for major incidents. The change tightens official reporting obligations ahead of the Nov. 1 start date and raises compliance pressure for network operators. It also signals faster government visibility into serious network disruptions and breaches.
Related Happenings
NCSC-UK joint advisory on covert botnets and proxy networks
Public Sector Action
First: 23.04.2026 15:28
Last: 23.04.2026 15:28
Sources 1
About this happening:
**NCSC-UK** and partner agencies issued a **joint advisory** warning that **China-nexus hackers** are using **hijacked consumer devices** as covert proxy networks to hide maliciou...
NCSC-UK joint advisory on covert botnets and proxy networks
Public Sector ActionAbout this happening: **NCSC-UK** and partner agencies issued a **joint advisory** warning that **China-nexus hackers** are using **hijacked consumer devices** as covert proxy networks to hide maliciou...
Section 702 reauthorization and privacy limits debate
Regulatory/Legal (General)
First: 15.04.2026 13:25
Last: 15.04.2026 13:25
Sources 1
About this happening:
Congress is set to debate **Section 702** reauthorization as the surveillance authority nears expiration, a move that could reshape U.S. access to overseas communications and inci...
Section 702 reauthorization and privacy limits debate
Regulatory/Legal (General)About this happening: Congress is set to debate **Section 702** reauthorization as the surveillance authority nears expiration, a move that could reshape U.S. access to overseas communications and inci...
FCC bans new foreign-made consumer routers
Public Sector Action
First: 25.03.2026 09:11
Last: 25.03.2026 09:11
Sources 1
About this happening:
The U.S. Federal Communications Commission banned the import of new foreign-made consumer routers after concluding they pose unacceptable cyber and national security risks to U.S....
FCC bans new foreign-made consumer routers
Public Sector ActionAbout this happening: The U.S. Federal Communications Commission banned the import of new foreign-made consumer routers after concluding they pose unacceptable cyber and national security risks to U.S....
Latest development: 26.03.2026 21:48
The FCC's March 23 ban on new foreign-made consumer-grade routers may leave U.S. consumers and small businesses using older devices longer, while businesses replacing network gear could face a more constrained and potentially more expensive market with fewer approved options and longer procurement cycles.
Middle East hacktivist surge targets government, banking, aviation and telecom sectors
Target Trend
First: 02.03.2026 17:00
Last: 02.03.2026 17:00
Sources 1
About this happening:
**More than 150 hacktivist incidents** were recorded between **February 28 and March 1, 2026**, marking a sharp surge in **Middle East** targeting that raised spillover risk for o...
Middle East hacktivist surge targets government, banking, aviation and telecom sectors
Target TrendAbout this happening: **More than 150 hacktivist incidents** were recorded between **February 28 and March 1, 2026**, marking a sharp surge in **Middle East** targeting that raised spillover risk for o...
UK NCSC issues Middle East indirect-risk guidance on monitoring, MFA, backups, and contingency planning
Defensive Guidance
First: 02.03.2026 17:00
Last: 02.03.2026 17:00
Sources 1
About this happening:
The **UK NCSC** issued guidance for organizations with **Middle East exposure**, urging immediate controls to reduce spillover risk from the regional escalation. The recommended r...
UK NCSC issues Middle East indirect-risk guidance on monitoring, MFA, backups, and contingency planning
Defensive GuidanceAbout this happening: The **UK NCSC** issued guidance for organizations with **Middle East exposure**, urging immediate controls to reduce spillover risk from the regional escalation. The recommended r...
Timeline
-
01.10.2025 04:00 2 articles · 7mo ago
China publishes mandatory cyber-incident reporting rules
Initial DisclosureThe Cyberspace Administration of China issues the Measures for the Management of National Network Security Incident Reports, requiring network operators that build, operate, or provide services in China and its territories to report security incidents to the appropriate ministry. The notice sets a one-hour reporting window for incidents affecting key infrastructure, a 30-minute window for a major or particularly important network security incident, two- to four-hour windows for less severe incidents, and stricter punishment for late, concealed, or falsified reports.
Show sources
- China Imposes One-Hour Reporting Rule for Major Cyber Incidents — www.darkreading.com — 01.10.2025 04:00
- China Imposes One-Hour Reporting Rule for Major Cyber Incidents — www.darkreading.com — 01.10.2025 04:00
-
01.10.2025 04:00 1 articles · 7mo ago
New incident-reporting deadlines take effect for Chinese network operators
Legal Policy Action UpdateStarting Nov. 1, the reporting obligations apply to network operators in China and its territories, including a one-hour notice requirement when an incident affects key infrastructure and a 30-minute notice requirement for a major or particularly important network security incident. Less severe incidents remain subject to two- to four-hour reporting windows, and suspected crimes must be reported to the public security bureau in time.
Show sources
- China Imposes One-Hour Reporting Rule for Major Cyber Incidents — www.darkreading.com — 01.10.2025 04:00