EU developing ‘cyber sanctions’ regime

EU’s Horizontal Working Party on Cyber Issues is developing a sanctions regime to deter and respond to cyber-attacks, which builds on the EU Cyber Diplomacy Toolbox. An internal memo ‘Cyber Diplomacy Toolbox – Options for a restrictive measures framework to respond to or deter cyber activities that threaten the security or foreign policy interests of the Union or its Member States’ outlined a regime to sanction foreign hacker groups, involved in data breaches, intellectual property theft and stealing of classified information, attacks on IT and critical infrastructure, as well as election hacks, Bloomberg reports. Sanctions, which include asset freezes and travel bans, can be put in place regardless of the attack succeeding or not, if the victim is an EU country or an EU partner. Measures will, however, have to be accompanied by criminal evidences, defensible at the European Court of Justice, thus allowing prosecuted parties to appeal the decision. In addition, when imposing sanctions, unanimity will be required among EU member states. According to Politico, the plan will be forwarded to foreign affairs attachés, and the regime is expected to be in place before the elections for the European Parliament in May, in order to avoid possible interference with the elections.