By Ellen Jennings-Trace

Copyright techradar

Skip to main content

Tech Radar Pro

Tech Radar Gaming

Close main menu

the business technology experts

België (Nederlands)

Deutschland

North America

US (English)

Australasia

New Zealand

View Profile

Search TechRadar

Expert Insights

Website builders

Web hosting

Best web hosting
Best office chairs
Best website builder
Best antivirus
Expert Insights

Don’t miss these

Microsoft restricts access to its cyber early warning systems for some Chinese firms

Microsoft SharePoint server hack sees Chinese threat actor hit roughly 100 orgs – here’s what we know so far

Microsoft SharePoint attack now sees victim count rises to 400 organizations, including US nuclear agency

Marks & Spencer’s cyberattack isn’t an exception – it’s a warning

UK firms at at risk of more cyber incidents – here’s how to stay protected

The first 24 hours after a ransomware attack – what should you do?

Microsoft seemingly confirms Chinese hackers behind SharePoint server attacks

How much do you trust your cloud? Hackers exploit weakness to target customers – here’s what we know

Regulatory compliance: Act now

Many workers wouldn’t tell their bosses if they’d been hit by a cyberattack

The UK wants to ban some organizations from paying ransomware demands

US government wants to ban Chinese technology in submarine cables

US Senator says Microsoft should be probed for ‘gross cybersecurity negligence’ after hospital ransomware attacks

Microsoft to stop using China-based engineers for US military tech support

NASA imposes blanket ban on Chinese nationals accessing worksites and calls

The countdown is on – Chinese firms now have just an hour to report cybersecurity incidents

Ellen Jennings-Trace

16 September 2025

Failure to comply could mean sanctions

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works.

(Image credit: Shutterstock)

Chinese firms will only have an hour to report severe cyber incidents
Those who don’t comply face fines
This comes as organizations around the world face huge ransomware risks

New regulations in China mean that firms now have just an hour to report cybersecurity incidents which would fall into ‘particularly serious’ or ‘serious’ categories.

The Cyberspace Administration of China has rolled out these strict new rules, set to start November 1 to tighten up their security response.
To fall under the highest degree of severity, the incident could disrupt over 50% of the province’s population, or involve the needs of over 10 million people in daily life, like utilities, healthcare, transport, or groceries. It could also involve portals of provincial or higher officials or government agencies, or involve key national news sites.

You may like

Microsoft restricts access to its cyber early warning systems for some Chinese firms

Microsoft SharePoint server hack sees Chinese threat actor hit roughly 100 orgs – here’s what we know so far

Microsoft SharePoint attack now sees victim count rises to 400 organizations, including US nuclear agency

Quick compliance
‘Serious’ incidents describe those that leak over 10 million citizen’s data, affect 50% of a city’s population, or affect over 1 million people’s lives – as well as incidents which include government portals being taken down for over six hours, or disruptions to critical infrastructure for over an hour, the South China Morning Post reports.

Economic losses of over ¥100 million (around £10 million) can also trigger the high severity classification, as well as anything that would threaten social stability or national security.
Those that suffer a high severity or ‘serious’ incident must report which systems were attacked, the incident type, the preliminary cause, an attack timeline, initial damage reports, and ransom amounts to the authorities within an hour, alongside assessments of potential danger and requests for government support.
Failure to comply with this strict timeline could see penalties awarded to the organization at fault;

Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
Contact me with news and offers from other Future brandsReceive email from us on behalf of our trusted partners or sponsorsBy submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.
“If the network operator reports late, omitted, falsely reported or concealed network security incidents, causing major harmful consequences, the network operator and the relevant responsible persons shall be punished more severely according to law,” the CAC warns.
With an increasing number of ransomware and data exfiltration attacks, China is not the only state introducing new cybersecurity regulations to try and mitigate the risks for citizens. Just a few days ago, the US Department of Defense issues strict new cyber rules for potential contractors, showing the priority of cybersecurity around the world.
You might also like

Take a look at our picks for the best malware removal software around
Check out our choice for best antivirus software
US warns Chinese tech firms may have ties to notorious cyber espionage group which hit hundreds of firms

Ellen Jennings-Trace

Staff Writer

Ellen has been writing for almost four years, with a focus on post-COVID policy whilst studying for BA Politics and International Relations at the University of Cardiff, followed by an MA in Political Communication. Before joining TechRadar Pro as a Junior Writer, she worked for Future Publishing’s MVC content team, working with merchants and retailers to upload content.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.

Microsoft restricts access to its cyber early warning systems for some Chinese firms

Microsoft SharePoint server hack sees Chinese threat actor hit roughly 100 orgs – here’s what we know so far

Microsoft SharePoint attack now sees victim count rises to 400 organizations, including US nuclear agency

Marks & Spencer’s cyberattack isn’t an exception – it’s a warning

UK firms at at risk of more cyber incidents – here’s how to stay protected

The first 24 hours after a ransomware attack – what should you do?

Latest in Security

Former FinWise employee may have stolen sensitive data on 689,000 American First Finance customers

North Korean hackers generate fake South Korean military ID using ChatGPT

Bags of info stolen from multiple top luxury brands – double check your data now

Google confirms hackers created their own account in sensitive law enforcement portal

Chinese malware is flooding GitHub pages – HiddenGh0st, Winos and kkRAT hit devs via SEO poisoning

CISA blasted by US watchdog for wasting funds and retaining the wrong employees

Latest in News

ExpressVPN’s latest update makes using its iPhone VPN even easier – here’s all you need to know

TechRadar Choice Awards 2025: Fitness & Home Tech categories – vote for your winners now!

How to watch Love Island Games season 2 online and for FREE from anywhere

TikTok to be saved in the US as Trump confirms a deal with China ahead of upcoming ban

OpenAI reveals biggest-ever study of how people are using ChatGPT – here are 3 things we’ve learned

TechRadar Choice Awards 2025: TV, Streaming & Audio categories – vote for your winners now!

LATEST ARTICLES

Former FinWise employee may have stolen sensitive data on 689,000 American First Finance customers

Seagate’s 22TB desktop HDD deal is the best I’ve seen in a while at $10.91/TB – Expansion hard drive is on sale at Seagate for $240 and even includes free data recovery

Researchers warn that skill erosion caused by AI could have a devastating and lasting impact on businesses – but it may already be too late

Top US tech companies are holding developers in closed-source AI ecosystems, Ant Group says

This top-rated MacBook Air is back down to a record-low price at Best Buy

TechRadar is part of Future US Inc, an international media group and leading digital publisher. Visit our corporate site.

Contact Future’s experts

Terms and conditions

Privacy policy

Cookies policy

Advertise with us

Web notifications

Accessibility Statement

Future US, Inc. Full 7th Floor, 130 West 42nd Street,

Please login or signup to comment

Please wait…