The use of AI by cyber attackers intensifies the threat landscape, particularly concerning China. New tactics, increased complexity of attacks, and lower entry barriers raise the likelihood of attacks. Attacks on login credentials, cloud infrastructures, and shorter breakout times demand faster responses. AI-based systems offer immense advantages in detecting and defending against cyber attacks. Tools… Continue reading Cyber Defense with AI
Tag: Cyber security
Cyber and data compliance now included in the social credit system
China is putting pressure on the implementation of its compliance rules regarding cyber security and data protection. With immediate effect, companies that violate the legal requirements for cyber security and data protection will be recorded and disclosed in the Corporate Social Credit System (CSCS). This applies, for example, to the mandatory certification of network-connected IT… Continue reading Cyber and data compliance now included in the social credit system
Reporting of cyber security incidents
China regulates the reporting of cyber security incidents in a new law, which is now available in draft form. A key aspect is the reporting obligation for companies that set up or operate networks in China or provide services via networks. Particular attention is paid to the different reporting channels for central bodies, critical infrastructures… Continue reading Reporting of cyber security incidents
China regulates generative AI
In April 2023, China published a discussion draft of the “Regulations for the Administration of Generative Artificial Intelligence Services.” The aim of the document is to ensure content security, compliant operation, and protection of user rights when using generative AI. The regulations emphasize the legality and ethical obligations of generative AI services. During the content… Continue reading China regulates generative AI
Politics of the Common Good: What Companies Need to Watch Out For
A policy change is underway in China that is causing foreign companies to strategically reevaluate how they do business. The goal of the new policy is to strengthen the common good through more intensive control of markets. The relevant document is the Opinions on Accelerating the Construction of a Single National Market of China of… Continue reading Politics of the Common Good: What Companies Need to Watch Out For
Legal Requirements for Vulnerability Management
For some time now, CIOs around the world have been busy fixing the Log4j2 vulnerability. From a technical perspective, there are solutions such as patches and system upgrades. However, vulnerability management is not just a technical issue in China; there are also legal requirements that companies must meet. For example, service providers are required by… Continue reading Legal Requirements for Vulnerability Management
Is Your Personal Data Safe with Chatbots?
Chatbots are popular in China and are part of everyday digital life. They can be found in business as well as in society, for example in customer service or as social chatbots, a kind of virtual friend of the user. One example is the app XiaoIce, which now has more than 40 million registered users… Continue reading Is Your Personal Data Safe with Chatbots?
DSL: What is “Important Data”?
The Data Security Law (DSL), which further strengthens China’s regulation of data security, will come into effect on September 1, 2021. The critical question for foreign companies is to what extent they will be affected by the DSL. The crux of the matter here is the so-called “important data.” This special category of data is… Continue reading DSL: What is “Important Data”?
MLPS 2.0: China Steps Up Its Cybersecurity Inspections
Implementation of the Cyber Security Law through the Multi Level Protection Scheme (MLPS 2.0) is mandatory for all companies established in China. Because implementation has been slow, the government has now stepped up cybersecurity monitoring and is urging companies to fulfill their MLPS obligations. The authorities are particularly targeting the industrially strong regions, where many… Continue reading MLPS 2.0: China Steps Up Its Cybersecurity Inspections
The Long Arm of the Law: New Draft Law on the Protection of Personal Data
China continues to improve data protection with the Personal Information Protection Law (PIPL). The law, along with the Cyber Security Law and the Data Security Law (still in draft form), will further strengthen personal data protection and have a profound impact on companies inside and outside China. Foreign companies need to pay particular attention to… Continue reading The Long Arm of the Law: New Draft Law on the Protection of Personal Data
China Intellectual Property Blog 