Tuesday

18th May 2021

Customers still 'in the dark' on cyber crime, warns EU agency

Cyber crime worth billions of euros is going unreported because companies are failing to admit to security breaches, according to a paper released Tuesday (28 August) by the EU's internet security agency.

In "Cyber incident reporting in the EU" the European Network and Information Security Agency (ENISA) highlighted a series of regulatory gaps in EU cyber laws. In its conclusions, ENISA admitted that although "large outages and large data breaches receive extensive media coverage.... many breaches, however, remain undetected and if detected, are not reported to authorities and not known to the public."

Read and decide

Join EUobserver today

Become an expert on Europe

Get instant access to all articles — and 20 years of archives. 14-day free trial.

... or subscribe as a group

  • Cyber-crime worth billions is going unreported, says the EU's internet agency (Photo: *n3wjack's world in pixels)

The report highlighted five major cyber incidents which all went unreported, including an 'IP hijacking' case in April 2010 where China Telecom fed incorrect routing information instructing US and other international Internet traffic to feed through Chinese servers, swallowing 15% of global Internet use in less than 20 minutes.

In a press statement accompanying the report, co-authors Dr Marnix Dekker and Chris Karsberg admitted that “cyber incidents are most commonly kept secret when discovered, leaving customers and policymakers in the dark about frequency, impact and root causes.”

Commenting that the "lack of transparency and lack of information about incidents makes it difficult for policy makers to understand the overall impact", the report added that this, in turn, "complicates the effort in the industry to understand and address cyber security incidents."

Under the EU Telecoms directive adopted in 2009, service providers are required to report "all significant security breaches" to ENISA and national data supervisors. Meanwhile, provisions of the recently adopted e-privacy directive requires service providers to report all security lapses compromising personal data.

ENISA revealed that it had received 51 incident reports for 2011-2012, the first year of mandatory reporting requirements, saying that it would publish an overview of cyber-security breaches in September and annual reports from spring 2013 onwards.

However, the data was incomplete, with a number of member states yet to implement the directive in to national law, it said. ENISA executive director, Professor Udo Helmbrecht insisted that EU cyber policy should extend the reporting provisions for companies describing it as "essential to obtain a true cyber security picture."

A Eurobarometer in July revealed that one in ten Europeans had been victims of data theft, while online security firm McAfee estimated that cyber-crime cost businesses $750bn (€600bn) in lost income across the world in 2011.

EU Digital Agenda Commissioner Neelie Kroes has repeatedly promised plans for a detailed cyber security strategy, including a European Cyber-Crime Centre based in Europol's Dutch headquarters which will start work in 2013. Speaking in January at the World Economic Forum, Kroes called for concerted action on cyber-crime claiming that there was a 10% chance of a major break-down of the worldwide computer network.

Kroes demands internet security strategy

EU Digital Agenda Commissioner Neelie Kroes Tuesday reiterated her call for an EU-wide internet security strategy, arguing that EU authorities have not done enough to establish defence mechanisms to prevent cyber attacks.

EU to set up anti-cyber-crime centre

Last year, worldwide profits generated from cybercrime outstripped the global trade in marijuana, cocaine and heroin - combined.

EU cyber directive 'nearly finished'

The EU executive will release a draft directive on cyber security in 2013, in the latest indication that the bloc is moving towards a harmonised online rulebook.

News in Brief

  1. Pandemic conspiracies pose security threat in France
  2. EU laws on vans and CO2 too weak, NGO says
  3. Unicef urges rich countries to donate vaccines
  4. Belgium voices Chinese spy fears over airport hub
  5. EU: Over 5 million people risk 'starvation' in Ethiopia
  6. EU 'deplores' Russian ban on Czech diplomats
  7. UK to stop locking up EU travellers without visas
  8. Karadžić being moved from Hague to UK jail

Feature

Covid-hit homeless find Xmas relief at Brussels food centre

The Kamiano food distribution centre in Brussels is expecting 20 people every half hour on Christmas Day. For many, Kamiano is also more than that - a support system for those made homeless or impoverished.

Top court finds Hungary and Poland broke EU rules

EU tribunal said Hungary's legislation made it "virtually impossible" to make an asylum application. Restricting access to international protection procedure is a violation of EU rules.

Stakeholders' Highlights

  1. Nordic Council of MinistersNordic Council enters into formal relations with European Parliament
  2. Nordic Council of MinistersWomen more active in violent extremist circles than first assumed
  3. Nordic Council of MinistersDigitalisation can help us pick up the green pace
  4. Nordic Council of MinistersCOVID19 is a wake-up call in the fight against antibiotic resistance
  5. Nordic Council of MinistersThe Nordic Region can and should play a leading role in Europe’s digital development
  6. Nordic Council of MinistersNordic Council to host EU webinars on energy, digitalisation and antibiotic resistance

Latest News

  1. EU impunity for Israel creating 'horror' in Gaza
  2. Internal paper lays out EU splits on 'returning' migrants
  3. Israel-Palestine and travel certificates in focus This WEEK
  4. MEPs rethink EU Parliament future after Covid-19 pandemic
  5. The activists calling out racism In Italy's media
  6. Online privacy for adults means more internet child abuse
  7. EU aims at 'zero pollution' in air, water and soil by 2050
  8. French police arrest Luxembourg former top spy

Join EUobserver

Support quality EU news

Join us