The European Court of Auditors has produced a report highlighting the shortcomings of the Community institutions
Between 2018 and 2021, the number of significant cybersecurity incidents in the bodies of the European Union increased tenfold. In general, they were complex attacks, mostly using new methods and technologies. And they can take weeks or even months of investigation and recovery.
For this reason, the European Court of Auditors has drawn up a report exposing the shortcomings of the Community institutions. For example, critical cybersecurity controls are sometimes not implemented, costs are inadequate in some instances, and in many cases there are even no computer security strategies. Moreover, training in this area is not systematic and no use is made of synergies in information.
The situation is more worrying as the capacity of the European Computer Emergency Response Team (CERT-EU) is “overburdened”. The assets are “unstable and do not meet the current threat level or the needs of the institutions,” warn the auditors. In 2020, a strategic proposal was approved to give him the additional resources he needs, but today the twenty-seven are still not in agreement.
There is also no legal framework in the EU for information security and cybersecurity in its institutions. There is a 2016 directive and a revision proposal, but they are not covered. And as of 2020, a regulation on cybersecurity standards is pending.
Source: La Verdad
I’m Wayne Wickman, a professional journalist and author for Today Times Live. My specialty is covering global news and current events, offering readers a unique perspective on the world’s most pressing issues. I’m passionate about storytelling and helping people stay informed on the goings-on of our planet.
