The Ministry of Public Security released 6 typical cases of administrative law enforcement in which parties failed to fulfill their obligations in network security, data security, and personal information protection.

A case of network attack on a government service system in Guizhou investigated by the public security organs: In May 2025, a government service system in a unit in Guizhou was subjected to a network attack, which was exploited by suspects involved in fraud crimes, resulting in a loss of over 4 million yuan in public property. The Guizhou public security organ's network security department found that the operators, builders, and maintainers of the system failed to fulfill their responsibilities as the main body of network security, did not take technical measures to prevent computer viruses, network attacks, network intrusions, and other harmful behaviors to network security, did not monitor or record the network operation status or network security incidents, did not retain network logs in accordance with regulations, and did not promptly address system vulnerabilities and other security risks, leading to serious consequences. The local government has imposed disciplinary measures on the responsible managers and staff of the unit according to law, and the local public security organ has imposed administrative penalties on the system builders and maintainers and ordered them to rectify the situation within a specified time frame. The suspects have been handled according to law in separate cases.