EU to up its defence against cyber attacks

EU news & policy debates
- across languages -

Click here for EU news »

Sunday 27 May 2012

BROWSE ALL SECTIONS

Agriculture & Food
- Section homepage
- CAP reform 2014-2020
- Intensive farming: Ecologically sustainable?
- Pesticides: Striking the right balance?
- Agriculture: In brief
- Europe and global food security
- Global food prices and CAP reform
- Fertilisers: Feeding agriculture's growing needs
- Eating green? Food, drinks and the environment
- Pros and cons of reviving Doha
Climate & Environment
- Section homepage
- Science of climate change
- Economics of climate change
- EU climate change policies
- Energy and climate change: Towards an integrated EU policy
- EU Emissions Trading Scheme
- Cities and climate change
- ICT and climate change: Problem or solution?
- Carbon capture and storage
- Waste Prevention and Recycling
- EU clean air strategy
- Environmental liability: Applying the 'polluter pays' principle
- What goes around comes around: Recycling and climate change
- Behind closed doors: Air quality in buildings
- Keeping cool with refrigerants: The F-gas review
- Regions fighting climate change
- Fertilisers: Feeding agriculture's growing needs
Consumers
- Section homepage
- The battle for EU consumer rights
- Food information for consumers
- Nutrition and health claims made on foods
- Advertising and Consumer Rights
- Financial education
- Consumers: Buying green?
- Eating green? Food, drinks and the environment
- Consumer empowerment: Helping shoppers to buy green
- Austerity: Healthcare in hardship
EU Priorities 2020
- Section homepage
- 'Europe 2020': Green growth and jobs?
- Energy and climate change: Towards an integrated EU policy
- The EU's economic governance: Rewriting the rulebook
- Financial regulation: The EU's agenda
- Free movement of labour in the EU 27
- Global food prices and CAP reform
Energy Efficiency
- Section homepage
- Who runs EU energy policies?
- Energy efficiency: The EU's new action plan
- Energy Performance of Buildings Directive
- Smart meters: Controlling your energy bill?
- Eco-design requirements for energy-using products (EuP)
- Combined heat and power generation (CHP)
- Carbon capture and storage
- Energy end-use efficiency and energy services
- ICT and climate change: Problem or solution?
- Energy efficiency action plan
- Efficient energy: Making savings at source
Energy Supply
- Section homepage
- Who runs EU energy policies?
- Liberalising the EU energy sector
- EU renewable energy policy
- Supporting renewable energies: The 'transition' schemes
- Solar power: Harnessing the world's largest energy source
- Pipeline politics? Russia and the EU's battle for energy
- Integrating renewables into the electricity grid
- Biofuels: The Next Generation
- Combined heat and power generation (CHP)
- Europe switches to gas
- Europe's southern gas corridor: The great pipeline race
Enlargement
- Section homepage
- Enlargement Newsmap
- EU-Serbia relations
- EU-Iceland relations
- Enlargement and the euro
- Turkey accession and Cyprus
- EU-Western Balkans relations
- EU-Croatia relations
- EU-Turkey relations
Euro & Finance
- Section homepage
- Stability and Growth Pact
- The EU's economic governance: Rewriting the rulebook
- Financial regulation: The EU's agenda
- Payment Services Directive: The end of the cash era?
- Financial education
- Enlargement and the euro
- Markets in Financial Instruments Directive (MiFID)
- 'Europe 2020': Green growth and jobs?
Europe's East
- Section homepage
- Europe's southern gas corridor: The great pipeline race
- Pipeline politics? Russia and the EU's battle for energy
- The European Neighbourhood Policy (ENP) [Archived]
Global Europe
- Section homepage
- EU-Switzerland relations
- The EU's new diplomatic service
- Turkey-Russia relations
- Pipeline politics? Russia and the EU's battle for energy
- Europe's southern gas corridor: The great pipeline race
- The EU's role in global governance
Health & Lifestyle
- Section homepage
- Health Literacy: Helping patients help themselves
- Healthcare innovation: The cost killer?
- eHealth
- Medicines in emerging markets
- Personalised healthcare
- Patient mobility
- Behind closed doors: Air quality in buildings
- Counterfeit medicines: A growing health threat
InfoSociety
- Section homepage
- Digital agenda: Connecting the EU
- Cloud computing: A legal maze for Europe
- The global battle to rule the Internet
- Policing the Internet?
- Advertising and Consumer Rights
- Digitisation of published works
- eHealth
Innovation & Enterprise
- Section homepage
- 'Europe 2020': Green growth and jobs?
- Digital agenda: Connecting the EU
- Information technology and innovation for SMEs
- Competitiveness clusters
- Electric cars: On the road to greener transport?
- Cloud computing: A legal maze for Europe
- Erasmus for Young Entrepreneurs
- European Institute of Innovation and Technology
- EU policymaking: Rooted in science?
- New skills and jobs: Mind the gap
Languages & Culture
- Section homepage
- Digitisation of published works
- Language use in the EU
- European values and identity
- Sport and Intercultural Dialogue
Regional Policy
- Section homepage
- EU Cohesion Policy 2014-2020
- Regions fighting climate change
- Regional policy in the EU: A midterm healthcheck
- Efficient energy: Making savings at source
- Regional Policy Newsmap
- The new EU cohesion policy (2007-2013) [Archived]
Social Europe & Jobs
- Section homepage
- Labour market reforms
- Free movement of labour in the EU 27
- Flexicurity: Europe's employment solution?
- 'Europe 2020': Green growth and jobs?
- Services in the Internal Market
- Growth and Jobs: Relaunch of the Lisbon strategy
- Corporate Social Responsibility: Back on the EU agenda?
- Services of General Interest in the EU
- New skills and jobs: Mind the gap
Sustainable Dev.
- Section homepage
- Rio+20: Dancing to the tune of the green economy
- Sustainable Consumption and Production
- Green buildings
- Raw materials: Heading for a global resource crunch?
- Greening air travel
- Towards a global life-cycle economy?
- Sustainable Cities
- Water, Business and Sustainability
- Towards a recycling society
- Public Procurement: Buying Green?
- Sustainable Transport
- Sustainable Development: Introduction
- Water efficiency: Saving the blue gold
- What goes around comes around: Recycling and climate change
- Eating green? Food, drinks and the environment
- Consumer empowerment: Helping shoppers to buy green
- Intensive farming: Ecologically sustainable?
- Corporate Sustainability
Transport
- Section homepage
- Aviation biofuels: A pie in the sky?
- Electric cars: On the road to greener transport?
- Algae: The ultimate biofuel?
- Aviation and Emissions Trading
- Single European Sky: Towards greener air travel?
- Biofuels for transport
- Transport infrastructure and environment
- Cars and CO2
- Greening logistics
- Aviation security
- Air safety management in the EU
- Sustainable Cities
UK in Europe
- Section homepage
- Europe's new treaty: Towards a multi-speed Union
- Financial regulation: The EU's agenda
- Small Business Act: Unlocking SMEs' potential?
- Markets in Financial Instruments Directive (MiFID)
- New skills and jobs: Mind the gap
- 'Europe 2020': Green growth and jobs?
More Sections
- Central Europe
- Competition
- EU Treaty & Institutions
- Education
- Elections
- Justice & Home Affairs
- Med & South
- Public Affairs
- Security
- Sports
- Trade & Industry

NEWS
EU-Argentina disputes escalate

The European Union filed a suit against Argentina's import restrictions with the World Trade Organization (WTO) today (25 May), intensifying the disputes between the South American nation and its trading partners.

News | MEPs blast Switzerland over workers quota, taxi restrictions
News | Europe’s airline CEOs blast “crazy” carbon pricing scheme
News | Ukraine asks EU to be patient for Tymoshenko solution
News | Parliament backs resource-efficiency roadmap
News | MEPs want stronger consumer rules for seniors, children
Hot topics
SPECIAL REPORTS
Special Reports
LINKSDOSSIERS

REACH chemical safety review: Re-opening a can of worms?
Five years after its adoption, the European Commission is preparing to review the controversial REACH regulation, which for the first time required chemical manufacturers to justify that their products are safe for consumers before placing them on the market.

LinksDossier | Cutting energy use in Europe's old building stock: Mission impossible?
LinksDossier | Visa-free travel for the EU's East: The next frontier
LinksDossier | Austerity: Healthcare in hardship
LinksDossier | Cloud computing: A legal maze for Europe
LinksDossier | Digital agenda: Connecting the EU
INTERVIEWS

EUrid: Being green pays off in increased competitiveness

It is not by making new regulations that policy-makers will force ICT companies to reduce their carbon footprint, but rather pushing member states to implement existing rules and convincing companies that they gain in competitiveness, argues Marc Van Wesemael, EURid CEO, in an interview with EurActiv.

Interview | Packaging boss: 'Paper for recycling is short in Europe'
Interview | Foreign Minister: 'Lithuania could adopt the euro after some time'
Interview | Internet guru warns users to play safe
Interview | Industry chief: Pricing, policies should promote water efficiency
Interview | Seeber MEP: Improve water efficiency without price spikes
OPINIONS

Greece's choice: a hard landing or a crash

Even though austerity depresses economic output, the Adjustment Programme is not the root of Greece's woes, argues Nikos Chrysoloras, a Brussels-based correspondent for Kathimerini, Greece’s leading newspaper and a Robert Bosch Stiftung “EU Journalism Fellow” for 2012, on a journalism practice with EurActiv.com. The op-ed was first published on the Euro Crisis blog.

Opinion | Energy efficiency: a clear path to a green future
Opinion | Europe Needs a Real Growth Agenda
Opinion | Energy savings: The stimulus Europe needs
Opinion | The water crisis is now
Opinion | François Hollande will lead Europe into a new era
BLOGS

Another monopoly of “Gazprom” level will appear in the RF
Upon the initiative of the President of the RF V.Putin and signature of the Prime-minister D.Medvedev, one of the greatest energy companies “Ros..

Blog | The safety of patients: what role for the EU?
Blog | Why Green Week is no longer Green
Blog | Euro-Bond
Blog | The impasse continues whilst the UK gets stuck in
Blog | The day of Cyril and Methodius
VIDEOS

^-A ⁺A

Published 30 September 2010 - Updated 04 October 2010

Tags

botnets Conficker Cyber-crime malware NATO Stuxnet virtual wars

The European Commission will today (30 September) propose new rules to increase the EU's protection against cyber-attacks, which have grown in number, scale and impact in recent years.

Under the proposed new legislation, EU member states will have new and more up-to-date legal instruments to combat cyber-crime.

Existing rules stipulate that illegally accessing and interfering with computers, servers and data is punishable as a criminal offence. The proposed directive will maintain and strengthen current provisions. But it will also specifically address and punish those who build, use and sell tools and software designed to carry out cyber-attacks.

In recent years, criminal organisations have waged large-scale illegal operations against sensitive information infrastructure in different EU countries. These coordinated sabotage actions were made possible by the use of specific tools, such as malware and botnets.

Malware is malicious software which is installed on a computer, usually without the owner's consent, to carry out a variety of fraudulent operations, such as stealing data or remotely manoeuvring the machine.

Once a computer is following orders from unknown users, it turns into a "zombie", in electronic jargon. Hundreds or sometimes thousands of zombies called into action simultaneously from a unique centre of control become a dangerous virtual army, nicknamed a 'botnet' and capable of causing serious disruption to private and public information infrastructure.

Virtual wars

The most notorious attack in Europe was carried out in 2007 against Estonia, which is one of the EU's most digitised countries. Offenders, identified by Tallinn's authorities as being on the payroll of neighbouring Russia, were able to block a number of official Estonian websites. They were able to freeze for a period online banking, the payment of pensions and a series of other delicate operations, therefore affecting both the authorities and citizens.

"With the help of malicious software, it is possible to take control of a large number of computers and steal credit card numbers, find sensitive information or launch large-scale attacks. It is time for us to step up our efforts against cyber crime, [which is] also often used by organised crime," EU Home Affairs Commissioner Cecilia Malmström explained in a note.

Every year sees the emergence of new, more dangerous botnets, capable of disrupting electronic services across the world. According to facts provided by the Commission, since 2008, a new type of malware known as Conficker has attacked several countries around the world. Reportedly, defence services in France, Germany and the UK experienced serious disruptions after being attacked by this botnet in the first few months of 2009.

More recently a new type of malware, called Stuxnet, is said to be infecting plants, factories and pipelines, with possible consequences for industrial production.

The proposed new EU rules particularly target the use of malware or botnets. To combat these operations, member states will be required to cooperate more effectively in the field of cyber defence, and will be obliged to provide immediate replies to urgent requests.

A new role for ENISA

As part of the package proposed today, the Commission is also presenting a draft regulation aimed at strengthening and prolonging the mandate of the EU agency dedicated to network security, ENISA.

Under the new rules, the agency will step up its efforts to boost cooperation across member states in the field of virtual security, as well as continuing to carry out EU-wide campaigns to raise awareness of cyber risks.

This is precisely what the digital industry is asking the European authorities to do. More widespread awareness of the hidden dangers of information networks will facilitate the use of the best defence tools and block contagion of infected software, thus limiting the impact of online fraud.

"The EU's institutions and governments must work ever [more] closely together, to help us understand the nature and scale of the new cyber threats. We need ENISA's advice and support to help design efficient response mechanisms to protect our citizens and businesses online," said the EU commissioner in charge of telecommunication networks, Neelie Kroes.

Positions:

Speaking on the less attractive aspects of digital life at a press conference, EU Digital Agenda Commissioner Neelie Kroes said Europe had to be prepared for the worst with regards to cyber attacks.

"Cyber-threats and cyber-crimes are moving targets. Cyber-criminals are never easy to stop – the digital world changes quickly and in most cases, it is very difficult if not impossible to get certainty on where the attacks come from. So we need to be both better prepared and to have stronger sanctions against cyber-criminals if we are to beat this threat," she said.

Describing them as "real" and "global in nature," Kroes called for a coordinated effort in order to improve security for online commerce, e-Health and cloud computing.

EU Home Affairs Commissioner Cecilia Malmström warned of changes to the nature of the security threat posed by cyber attacks. "Cyber-criminals today are motivated more by a desire to gain financially than to create havoc," she said, warning of so-called 'botnets' that set up computers to send on viruses without their owner being aware of it.

In some member states, "the formal criminal offence linked to a large-scale attack may not be regarded as severe enough to justify rapid cross-border law enforcement and judicial cooperation," against this, she said.

"The proposed legislation introduces new elements to address the prevention and the fight against such attacks," she said.

The European Union falls back in its efforts to create and fully implement a Common European Policy on Cyber Security and need a special Coordinator for Cyber Space protection, MEP Ivailo Kalfin (S&D, Bulgaria) stated in a press release.

“This situation contradicts EU`s ambitions to encourage the use of information and communication technologies as a main economic boost in the years to come.

The package, introduced by the EC, "is a step forward in the right direction, but unfortunately a very small one", Kalfin said. According to him the EU needs a European coordinator on protection of its Cyber Space like the existing Counter terrorism coordinator.

"We will do our best in the European parliament to give more ambition and political energy on the matter of security of the Internet and the Cyber Security as a whole", he concluded.

External Links

European Union

European Council: Council Framework Decision on attacks against information systems – 24 Feb. 2005 [FR] [DE]
European Commission: Communication on protecting Europe from cyber-attacks – 30 March 2009 [FR] [DE]
ENISA: Official website

Press articles

EurActiv Poland: Unia wzmacnia ochronę przed cyberatakami
EurActiv Romania: Hackerii - vizati direct de o viitoare directiva UE
EurActiv Slovakia: EÚ stupňuje boj proti kybernetickým útokom

Background:

EU and NATO authorities started to rethink their common approach to telecommunications network protection after a massive cyber attack carried out against Estonian public and private strategic infrastructure in 2007.

In March 2009, the European Commission published a new communication aimed at "protecting Europe from large scale cyber-attacks".

Earlier, in April 2008, NATO leaders assembled at a summit in Bucharest agreed upon a common policy for cyber defence. They committed themselves to establishing a new authority with the primary task of coordinating NATO's "political and technical" reactions to cyber attacks.