Security News > 2024 > July > UK cyber-boss slams China's bug-hoarding laws

ASIA IN BRIEF The interim CEO of the UK's National Cyber Security Centre has criticized China's approach to bug reporting.

After first pointing out that UK authorities have not attributed that incident to a Chinese actor, Oswald said "Chinese actors' approach in cyberspace over the last 18 months should worry us all."

"For the UK, there are other worrying indicators of the Chinese approach on cyber though," she added.

"We're particularly concerned about the Chinese approach to vulnerabilities under the national security legislation. So anyone in China who finds a vulnerability in software has to report that first to the government. For us, that goes against long-held processes and procedures in the cyber security community where, when you find a vulnerability, they are shared by default for common good."

Amazon Web Services China issued a statement last Thursday addressing and denying rumors that the business was in trouble, reported local media.

Another [PDF] requires government bodies "To identify and actively manage the risks associated with vulnerable technologies they manage, including those they manage for other entities," and the third [PDF] requires the sharing of cyber threat information through intelligence sharing platforms.

News URL

https://go.theregister.com/feed/www.theregister.com/2024/07/15/asia_technology_news_weekly_roundup/