Jo Incheol Vows to Prevent Another SKT Incident with Dual Digital Safety Net

Published 21 Jul.2025 11:28(KST)

Updated 25 Jul.2025 17:40(KST)

open/close

Representative Proposal of Amendments to the Information and Communications Network Act and the Digital Inclusion Act
"Strengthening Public and Private Information Security Responsibilities... Protecting Vulnerable Groups"

Jo Incheol, member of the Democratic Party of Korea.

In the wake of the recent large-scale hacking incident at SK Telecom, which has heightened public awareness of cyber security breaches, legislation is being promoted to enhance the effectiveness of information security certification systems and to systematically protect digitally vulnerable groups during cyber crises.

On July 21, Jo Incheol, a member of the Democratic Party of Korea representing Gwangju Seo-gu Gap, announced that he had introduced two bills: an amendment to the Act on Promotion of Information and Communications Network Utilization and Information Protection, and an amendment to the Digital Inclusion Act, both aimed at establishing a dual digital safety net.

The package of amendments seeks to establish a structural safety net across digital society by strengthening corporate security responsibilities and the effectiveness of certification systems, as well as reinforcing the state's duty to protect vulnerable groups.

The proposed amendment to the Information and Communications Network Act aims to overcome the limitations of the current formal information security management system certification and to ensure its effectiveness. SK Telecom had obtained information security certification but failed to prevent the hacking incident, and has faced criticism for losing public trust in its response afterward.

The key points of the amendment include: ▲ requiring major information and communications service providers to secure sufficient information security personnel and budget; ▲ strengthening certification standards for high-risk operators with significant social impact; ▲ conducting on-site inspections alongside post-management; ▲ canceling certifications in the event of violations of information security laws; and ▲ imposing fines for failure to comply with certification requirements.

The amendment to the Digital Inclusion Act focuses on institutionalizing support systems by the state and local governments to ensure that vulnerable groups are not excluded from information access or damage response during cyber crises.

Main provisions include: ▲ explicitly stating the obligation of the state and local governments to support digitally vulnerable groups in the event of a security breach; ▲ designating dedicated institutions such as digital competency centers; and ▲ providing tailored information, accepting and linking damage reports, and offering preventive education.

Jo Incheol stated, "The SKT hacking incident was not just a simple security breach, but an event that exposed structural flaws in the current system," adding, "Information security is not an issue that ends with a certificate. Responsible corporate investment and systematic government management must go hand in hand."

Jo Incheol further emphasized, "The state must not turn a blind eye to vulnerable groups who suffer greater harm in cyber crises due to the digital divide," and added, "A dual digital safety net that protects both technology and people is urgently needed."