Sunday

26th May 2019

Opinion

On cybersecurity, Europe must act now

  • Estonia managed to keep the impact of WannaCry to almost zero by a large-scale targeted campaign in cooperation with the private sector (Photo: Blogtrepreneur)

A spectre is haunting the world – the cyber spectre.

This menace can reveal itself under different faces, taking the form of criminality, terrorism or state-sponsored activity – often using several faces together and masking its true intentions.

Read and decide

Join EUobserver today

Support quality EU news

Get instant access to all articles — and 18 year's of archives. 30 days free trial.

... or join as a group

Over 200,000 victims in more than 150 countries across the globe were hit last year by Wannacry, probably the most significant cyber attack to date.

Among them were large corporations such as Telefonica and hospitals in the UK, which had to cancel or delay medical procedures.

The NotPetya attack a month later is estimated to have cost companies more than $1.2bn (€975,000). We have seen election campaign hacks in 2016 and 2017 where attacks were used to delegitimise the electoral process or cast a shadow over elected representatives.

By now it is becoming clear that the threats cyber attacks pose are real. Luckily, while cyber threats may be inevitable, their paralysing impact is not.

But fighting them is new for us.

Some governments have closed their eyes, hoping that the menace will go away. It will not. It will only become stronger.

No borders

Other governments are more diligent, creating their own ways and institutions for response. Unfortunately the spectre does not recognise borders, which is why the NotPetya, that seemed first to be targeting primarily Ukraine, spread fast and closed businesses in Estonia while the systems that caused this were located in France.

We can win this war only if we stand united. NATO has by now officially recognised cyberspace as a domain of operations, confirming that a cyberattack on any of its allies will be considered an act of war. But cyber threats are significantly larger than military, often fought by non-military means.

The former Estonian president Toomas Hendrik Ilves, whose country in 2007 witnessed one of the first massive cyber attacks in the world, recently made a proposal to create a worldwide alliance to fight cyber threats.

A timely proposal, but realising it can take more time than we actually have.

We must act immediately, using existing structures and, where necessary, taking a step further. Europe has become a major player in fighting cyber threats.

The EU solidarity clause is valid in the case of a cyber attack, too, not only in the case of conventional threats. Luckily, today in EU we do no longer lack the tools, we just have to be able to use them.

EU response

In September, the Commission published the renewed EU cyber security strategy.

The Estonian presidency in the council acted quickly upon the commission's proposals and adopted council conclusions in November, followed by adoption of the concrete action plan to implement the EU cybersecurity strategy in December.

For us to be able to convincingly deter cyber threats, the EU agreed last year on its framework that will allow to use all EU common foreign policy tools as a response to cyber attacks – from diplomatic demarches to economic sanctions.

Now the politicians of Europe must be ready to use it. But experience and understanding of cyber threats among various member states are too different.

What for some is everyday reality seems to others like a fantasy from another world. We do not have time to wait for everybody to get on board, we must act now.

In the EU, this action can be taken, if needed, in the form of enhanced cooperation.

It is a procedure where a minimum of nine member states are allowed to establish advanced integration or cooperation inside the EU.

One may argue that the EU´s recently established Permanent Structured Defence Cooperation (Pesco) should provide a suitable platform for stepping up cyber defence cooperation as well.

But although there are two cyber-related projects among the initial list of projects under Pesco, the whole area of cyber security is so much broader and brings together so many civilian elements that cooperation under Pesco will never be enough.

For core challenges, enhanced cooperation would allow the participating countries to put in place rules for decreasing possibilities of cyber attacks, such as exchanging information more actively, widening the NIS directive list of essential services to areas protecting our way of life, such as democratic elections and government systems.

This would allow the member states to coordinate common responses to possible attacks and, importantly, attribute the attacks to perpetrators.

Cyber 'hygiene'

Member states could launch an investment program to R&D centres, which provide for solutions in cyber security and massive cyber education programs not only for experts but also for the general public, raising awareness in cyber hygiene.

By following simple rules, we can significantly decrease the risks of becoming a target of future attacks.

The Wannacry attack could easily have been avoided by basic security practices, such as replacing outdated software and installing critical updates.

Estonia managed to keep the impact of WannaCry to almost zero by a large-scale targeted campaign in cooperation with private sector, asking people to stop using the obsolete system containing a critical vulnerability.

From enhanced cooperation, we could take the next move: forming a cyber defence alliance, including members from other parts of the world, as cyber threats recognise no borders.

With such steps, Europe can lead the fight for the future. In the past, Europe has always been successful when it succeeded in seeing current problems as opportunities for the future.

A similar opportunity is now open for us.

Mart Laar is a former Estonian prime minister (1992-1994 and 1999-2002)

Disclaimer

The views expressed in this opinion piece are the author's, not those of EUobserver.

Focus

EU to beef up cybersecurity agency

The Commission's president proposed to set up a European Cybersecurity Agency. The EU already has an agency for Network and Information Security.

It's time we lost our 'cyber-naivety'

You wouldn't leave a box of your most prized possessions and private information in an unlocked box in the middle of the street, so why are so many people casual about their online information?

Cybersecurity and defence for the future of Europe

Cybersecurity is a core element of Europe's strategy to become a global leader in digital technologies and a secure place for its citizens, write EU commissioner Jyrki Katainen and expert Jarno Limnell.

EU sanctions regime cannot be an 'EU Magnitsky Act'

The debate about the choice of name should not boil down to a political muscle show against Hungary, which opposes the reference to Magnitsky because of its political relations with the Russian government.

News in Brief

  1. Exit poll: Greek conservatives beat Syriza
  2. Kurz on top in Austria, despite Strache scandal
  3. Greens come in second in Germany, exit polls say
  4. Voter turnout rises in Europe at EU elections
  5. Former EU climate chief cheered by 40,000 activists in Denmark
  6. UK's May announces June 7 resignation date
  7. Ireland votes for EU election and divorce referendum
  8. Report: May to announce resignation plan on Friday

Press freedom and the EU elections

We are campaigning for the next European Commission to appoint a commissioner with a clear mandate to take on the challenge of the protection of freedom, independence and diversity of journalism.

Stakeholders' Highlights

  1. Vote for the EU Sutainable Energy AwardsCast your vote for your favourite EUSEW Award finalist. You choose the winner of 2019 Citizen’s Award.
  2. Nordic Council of MinistersEducation gets refugees into work
  3. Counter BalanceSign the petition to help reform the EU’s Bank
  4. UNICEFChild rights organisations encourage candidates for EU elections to become Child Rights Champions
  5. UNESDAUNESDA Outlines 2019-2024 Aspirations: Sustainability, Responsibility, Competitiveness
  6. Counter BalanceRecord citizens’ input to EU bank’s consultation calls on EIB to abandon fossil fuels
  7. International Partnership for Human RightsAnnual EU-Turkmenistan Human Rights Dialogue takes place in Ashgabat
  8. Nordic Council of MinistersNew campaign: spot, capture and share Traces of North
  9. Nordic Council of MinistersLeading Nordic candidates go head-to-head in EU election debate
  10. Nordic Council of MinistersNew Secretary General: Nordic co-operation must benefit everybody
  11. Platform for Peace and JusticeMEP Kati Piri: “Our red line on Turkey has been crossed”
  12. UNICEF2018 deadliest year yet for children in Syria as war enters 9th year

Latest News

  1. Thunberg: We can still fix climate, but must start today
  2. Turnout up in Slovakia, with pro-EU liberals scoring high
  3. Belgium votes in hybrid EU-national election
  4. Irish greens take Dublin in second EU exit poll
  5. EU election results to trigger top jobs scramble This WEEK
  6. Don't tell the Dutch - but Timmermans 'won'
  7. EU says goodbye to May with 'respect'
  8. Strache scandal: how big a hit will Austrian far-right take?

Stakeholders' Highlights

  1. Nordic Council of MinistersNordic commitment to driving global gender equality
  2. International Partnership for Human RightsMeet your defender: Rasul Jafarov leading human rights defender from Azerbaijan
  3. UNICEFUNICEF Hosts MEPs in Jordan Ahead of Brussels Conference on the Future of Syria
  4. Nordic Council of MinistersNordic talks on parental leave at the UN
  5. International Partnership for Human RightsTrial of Chechen prisoner of conscience and human rights activist Oyub Titiev continues.
  6. Nordic Council of MinistersNordic food policy inspires India to be a sustainable superpower
  7. Nordic Council of MinistersMilestone for Nordic-Baltic e-ID
  8. Counter BalanceEU bank urged to free itself from fossil fuels and take climate leadership
  9. Intercultural Dialogue PlatformRoundtable: Muslim Heresy and the Politics of Human Rights, Dr. Matthew J. Nelson
  10. Platform for Peace and JusticeTurkey suffering from the lack of the rule of law
  11. UNESDASoft Drinks Europe welcomes Tim Brett as its new president
  12. Nordic Council of MinistersNordic ministers take the lead in combatting climate change

Stakeholders' Highlights

  1. Counter BalanceEuropean Parliament takes incoherent steps on climate in future EU investments
  2. International Partnership For Human RightsKyrgyz authorities have to immediately release human rights defender Azimjon Askarov
  3. Nordic Council of MinistersSeminar on disability and user involvement
  4. Nordic Council of MinistersInternational appetite for Nordic food policies
  5. Nordic Council of MinistersNew Nordic Innovation House in Hong Kong
  6. Nordic Council of MinistersNordic Region has chance to become world leader when it comes to start-ups
  7. Nordic Council of MinistersTheresa May: “We will not be turning our backs on the Nordic region”
  8. International Partnership for Human RightsOpen letter to Emmanuel Macron ahead of Uzbek president's visit
  9. International Partnership for Human RightsRaising key human rights concerns during visit of Turkmenistan's foreign minister
  10. Nordic Council of MinistersState of the Nordic Region presented in Brussels
  11. Nordic Council of MinistersThe vital bioeconomy. New issue of “Sustainable Growth the Nordic Way” out now
  12. Nordic Council of MinistersThe Nordic gender effect goes international

Join EUobserver

Support quality EU news

Join us