BRUSSELS: The European Union on Friday adopted powers to punish those outside the bloc who launch cyberattacks that cripple hospitals and banks, sway elections and steal company secrets or funds.
EU ministers meeting in Brussels said the 28-nation group would now, for the first time, be able to impose asset freezes and travel bans on individuals, firms and state bodies implicated in such attacks.
“The Council (of EU countries) established a framework which allows the EU to impose targeted restrictive measures to deter and respond to cyberattacks,” it said in a statement.
It added that sanctions will be considered if a cyberattack is determined to have had a “significant impact” on its target.
The goal is to bolster the security of EU institutions, firms and individuals against what Britain called an increase in the “scale and severity” of cyberattacks globally.
“This is decisive action to deter future cyberattacks,” British Foreign Secretary Jeremy Hunt said after Britain and its EU partners drafted the measures.
“For too long now, hostile actors have been threatening the EU’s security through disrupting critical infrastructure, attempts to undermine democracy and stealing commercial secrets and money running to billions of euros,” Hunt said.
“Our message to governments, regimes and criminal gangs prepared to carry out cyberattacks is clear,” Britain’s top diplomat added.
“Together, the international community will take all necessary steps to uphold the rule of law and the rules based international system which keeps our societies safe.”
The British government has pledged to continue close cooperation with the EU after it leaves the bloc in line with the 2016 referendum.
Under the sanctions regime, diplomats said, the 28 EU countries would have to vote unanimously to impose sanctions after meeting a legal threshold of significant impact.
For example, countries would look at the scope and severity of disruption to economic and other activities, essential services, critical state functions, public order or public safety, diplomats said.
They would examine the number of people and EU countries affected and determine how much money, intellectual property and data have been stolen.
EU diplomats told reporters it could also cover the hacking of European elections by a third party or country. Elections for a new European Parliament take place May 23-26.
In line with US intelligence assessments, EU officials highlight in particular the threat of disinformation and election hacking from Russia.
EU countries would also study how much the perpetrator has gained through such action.
A Dutch diplomat told reporters that the powers amount to a “big step forward” toward building a more secure cyberspace.
European leaders in October had called for a regime to impose sanctions against cyberattacks.
US and European police said Thursday they have smashed a huge international cybercrime network that used Russian malware to steal 100 million dollars from tens of thousands of victims worldwide.
EU diplomats said the bloc will now start drawing up a blacklist for potential sanctions in cyberattack cases.
A number of powerful people close to Russian President Vladimir Putin appear on a blacklist of 164 Russians and Ukrainians that was established after Moscow’s annexation of the Crimean peninsula in 2014.
Those blacklisted are under travel bans and asset freezes just like those that would be imposed on those implicated in cyberattacks.
EU adopts powers to respond to cyberattacks
EU adopts powers to respond to cyberattacks
- The EU can now impose asset freezes and travel bans on individuals, firms and state bodies implicated in cyberattacks
- Sanctions will be considered if a cyberattack is determined to have had a ‘significant impact’ on its target
Apple to update EU browser options, make more apps deletable
- iPhone maker came under pressure from regulators to make changes after the EU’s sweeping Digital Markets Act took effect on March 7
- Apple users will be able to select a default browser directly from the choice screen after going through a mandatory list of options
STOCKHOLM: Apple will change how users choose browser options in the European Union, add a dedicated section for changing default apps, and make more apps deletable, the company said on Thursday.
The iPhone maker came under pressure from regulators to make changes after the EU’s sweeping Digital Markets Act took effect on March 7, forcing big tech companies to offer mobile users the ability to select from a list of available web browsers on a “choice screen.”
The new rules require mobile software makers to show the choice screen where users can select a browser, search engine and virtual assistant as they set up their phones, which earlier came with preferred options from Apple and Google.
In an update later this year, Apple users will be able to select a default browser directly from the choice screen after going through a mandatory list of options.
A randomly ordered list of 12 browsers per EU country will be shown to the user with short descriptions, and the chosen one will be automatically downloaded, Apple said. The choice screen will also be available on iPads through an update later this year.
Apple released a previous update in response to the new rules in March, but browser companies criticized the design of its choice screen, and the Commission opened an investigation on March 25 saying it suspected that the measures fell short of effective compliance.
The company said it has been in dialogue with the European Commission and believes the new changes will address regulators’ concerns.
It also plans to introduce a dedicated area for default apps where a user will be able to set defaults for messaging, phone calls, spam filters, password managers and keyboards.
Users will also be able to delete certain Apple-made apps such as App Store, Messages, Camera, Photos and Safari. Only Settings and Phone apps would not be deletable.
