|
Article 5
|
A “major cyber security incident” as defined in Subparagraph 5, Paragraph 1, Article 4 of the Act refers to an incident involving a private sector entity that meets one of the following criteria and poses a significant risk to social public interest, people’s daily lives, or economic activity, while also drawing substantial public attention:<br/>1. Serious disclosure of core business information.<br/>2. Serious tampering with core business information or core information and communication systems.<br/>3. The operation of core information and communication systems is affected or interrupted, and cannot be restored to normal operation within the tolerable interruption time.
|