The countdown clock is running until the EU’s updated Network and Information Security Directive, NIS 2, goes into effect in all EU member states in October 2024 — less than a year away. While meeting NIS 2’s compliance requirements will take time and a solid organizational strategy, ultimately it will help mitigate an organization’s cybercrime-related risk.
Cybercrime Continues to Surge
NIS 2 is meant to address a global crime wave. Cybercrime is among the fastest-growing areas of criminal activity worldwide. High-profile ransomware campaigns continue to make headlines with increasing frequency. BlackBerry’s November 2023 Threat Report notes a remarkable 70% increase in unique malware attacks from June to August 2023, with finance, healthcare, critical infrastructure, and government sectors being most heavily targeted. According to the European Union Agency for Cybersecurity (ENISA), in 2022, the vast majority of those attacks in Europe targeted public administration and governments, digital service providers, and critical infrastructure – the very same sectors covered by the updated NIS 2 Directive.
