Presidency of the Council of the European Union

09/30/2022 | Press release | Distributed by Public on 09/30/2022 03:11

European Cybersecurity Month begins

October is the annual European Cybersecurity Month. This year is no different, as events will again be held across the European Union to raise awareness and increase the resilience of EU citizens in the face of cyber threats.

European Cybersecurity Month is an annual awareness campaign across the European Union. Its purpose is to raise awareness of cyber threats, promote the topic of cybersecurity among citizens and organisations and provide them with information on how they can protect themselves in the online environment.

"With the Covid-19 pandemic, we moved a lot of our daily activities into the online world and now there is no turning back. But the increased use of digital technologies makes us more vulnerable and exposes us to the risk of cyberattack," said European Commissioner for Competition Margrethe Vestager in her greeting for last year's European Cybersecurity Month. The Commissioner said it was important for users to think before opening a link and if they had doubts about its safety, they should not open it.

This year's 10th European Cybersecurity Month will take place in October 2022 and will mark ten years of joint efforts by EU institutions to strengthen cybersecurity. Each year's event focuses on a selected theme. This year, ransomware and phishing, which are currently widespread phenomena, were chosen.

  • Ransomware

    Ransomware is a type of malware (such as viruses, Trojan horses, etc.) that infects users' computer systems. It then manipulates the infected system, and the data stored on it, so that the user cannot use it (partially or completely). The victims usually receive a ransom message in a pop-up window shortly after the device is compromised, and the attacker attempts to get them to pay ransom to regain full access to the system and files.

  • Phishing

    Phishing aims to persuade potential victims to divulge sensitive information such as bank and credit card details. It is a combination of social engineering and fraud. The attack usually takes the form of spam, a malicious website, an email message or an instant message that appears to be from a legitimate source such as a bank or social network. Attackers often use intimidation tactics or urgent requests to get the recipient to respond. These scam messages are usually not personalised and may share similar generic characteristics.

Loading the video...

In order to read this content from YouTube, please review and agree to our privacy policy and use of cookies

I accept

Video: European Cybersecurity Month

© Council of the EU

Click here for a list of individual events in the EU

Threats in cyberspace will become increasingly significant

Digital technologies play an increasingly important role in today's world. Critical sectors such as transport, energy and healthcare depend on them. On the one hand, the digitisation of critical infrastructure presents enormous opportunities and makes the lives of Europeans easier, but on the other hand it exposes states and society to cyber threats that can jeopardise the basic functioning of society.

Cyber attacks and cybercrime are becoming more frequent and sophisticated across Europe. By 2024, 22.3 billion devices worldwide are expected to be connected to the IoT. This trend will continue in the future and it is therefore essential that Member States (and their citizens) are prepared to respond and successfully counter cyber threats.

A stronger cybersecurity response to build an open and secure cyberspace can create greater trust among citizens in digital tools and services.

Top cyber threats in the EU

© Council of the EU

Top cyber threats in the EU

How the EU tackles cyber threats?

The Commission has submitted a new legislative proposal

The latest development in the European Union's cybersecurity is the development of the Cyber Resilience Act by the European Commission, which was presented on 15 September 2022. The proposal aims to protect consumers and businesses from products with inadequate security features that may compromise their cybersecurity. In addition, the standards that the proposal sets for the cybersecurity of products are mandatory throughout their life cycle.

"When it comes to cybersecurity, Europe is only as strong as its weakest link: be it a vulnerable Member State, or an unsafe product along the supply chain. Computers, phones, household appliances, virtual assistance devices, cars, toys… each and every one of these hundreds of million connected products is a potential entry point for a cyberattack. And yet, today most of the hardware and software products are not subject to any cyber security obligations. By introducing cybersecurity by design, the Cyber Resilience Act will help protect Europe's economy and our collective security," said Thierry Breton, Commissioner for the Internal Market.

Cybersecurity is a priority of the Czech Presidency

In its programme, the Czech Presidency expressed its commitment to address cyber threats and the geopolitical implications of new technologies (and space). It also focuses on countering disinformation, the security of cyberspace and the rapid development of the EU Hybrid Toolbox, a set of tools and measures that EU Member States can use together to respond to hybrid activities.

The Czech Presidency pays special attention to the cybersecurity of EU institutions, bodies and agencies, and the EU's space-based global secure communication system. It is important that, together with democratic partners, the EU actively shapes the international debate in international organisations to enhance the security and stability of cyberspace.