Question: In India, it is legally mandatory for which of the following to report on cyber security incidents?
- Service providers
- Data centres
- Body corporate Select the correct answer using the code given below:
Options:
A) Only 1
B) 1 and 2
C) Only 3
D) 1, 2 and 3
Show Answer
Answer:
Correct Answer: D
Solution:
- Exp. [d] CERT (Computer Emergency Response Team) Rules gives every person, company or organisation the option to report cyber security incidents to the CERT-In. It also places an obligation on them to mandatorily report the following kinds of incidents as early as possible: ? Targeted scanning/probing of critical networks/systems; ? Compromise of critical systems/information; ? Unauthorised access of IT systems/data; ? Defacement of website or intrusion into a website and unauthorised changes such as inserting malicious code, links to external websites, etc.; Malicious code attacks such as spreading of virus/worm/ Trojan/botnets/spyware; The CERT Rules also impose an obligation on service providers, intermediaries, data centres and body corporates to report cyber incidents within a reasonable time so that CERT-In may have scope for timely action.
BETA
