EU Lawmakers Pass Sweeping New Cybersecurity Rules
Hackers gained unauthorized access to DEA portal, Ukrainian man sentenced to four years for stealing login credentials, Human rights group want war crimes prosecution for Russian hacking, more
Check out my latest CSO column that looks at the Five Eye’s warning to MSPs and what prompted them to issue an advisory.
EU countries and lawmakers agreed to stricter cybersecurity rules for virtually all organizations, including large energy, transport, and financial firms, digital providers, and medical device makers, by enacting legislation known as NIS 2 Directive.
The new law covers all medium and large firms across virtually all businesses and governments. Under the law, organizations must assess their cybersecurity risk, notify authorities and take technical and organizational measures to counter the risks, with fines up to 2% of global revenue for non-compliance.
EU countries and the EU cybersecurity agency ENISA could also assess the risks of critical supply chains under the rules. (Foo Yun Chee / Reuters)
Related: Euractiv.com
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.