EU wants to better protect itself against cyber attacks by Russia and Co

To protect against cyber attacks, for example against public administration, manufacturers of medical devices or waste water management, stricter rules will apply in the European Union in the future.

The European Parliament approved an agreement with EU countries in Brussels on Thursday to ensure better protection of network and information systems against attacks by hackers.

Why is the EU doing this?

A trigger is the hacker attacks allegedly carried out by the Russian state or state-related actors.

The European Commission writes in its press release:

It is about “managing the deteriorating security environment after the Russian aggression against Ukraine”. And they want to strengthen the European Union’s ability to protect its citizens and infrastructure.

What changes?

Above all, the new requirements are intended to standardize the rules in the 27 EU countries. To this end, minimum requirements and mechanisms for cooperation between countries are being created.

In addition, fines can be imposed if operators of critical infrastructures do not meet the requirements. National authorities must monitor the implementation of the new rules more closely than before.

In addition, the scope is expanded to, for example, pharmaceutical production. So far, the so-called NIS Directive, which is now being replaced by NIS 2, only applies to areas such as healthcare, banking, drinking water supply and energy infrastructure.

From when does this apply?

Before the new rules come into force, EU countries must give final approval to the agreement with Parliament. This is considered a formality.

Member States then have 21 months to transpose the new rules into national law.

What are the top cyber threats?

sources

(dsc/sda/awp)