The application of the NIS2 directive has begun
In the month of raising awareness about information security, October, which is observed both in Europe (European Cybersecurity Month - ECSM) and in the USA (Cybersecurity Awareness Month), the NIS2 directive came into force.
The application of Directive (EU) 2022/2555, commonly referred to as NIS2 (Network and Information Security), began on October 18, 2024. All affected entities must comply with the new requirements of the directive, and member states and candidate countries must align their legal frameworks. This includes stricter security standards, strict reporting obligations for incidents, and stronger measures to protect critical infrastructure at the national level. It is also important to note that, for the first time, criminal liability for operators of critical infrastructure has been introduced.
In the context of the NIS2 directive, we cannot overlook the GDPR regulation, which came into effect on May 25, 2018.
The rise of cybercrime year after year and the damage it causes is highlighted by the data we present below. According to IBM's report on the cost of data breaches for 2023, the average cost of a data breach was $4.45 million. In 2023, there were 2,365 cyber attacks, affecting 343,338,964 victims. The year 2023 saw a 72% increase in the number of data breaches compared to 2021, which previously held the record. Globally, the cost of data breaches in 2024 averaged $4.88 million. Email remains the most common method for transmitting malware, with approximately 35% of malware delivered via email in 2023.
This statistic underscores the critical importance for companies to implement robust security measures. Adequate software solutions and effective, ongoing employee training are crucial steps in combating malicious actors. Data security not only protects business information but also strengthens trust with clients and partners. Protecting information has become imperative for maintaining competitiveness, market reputation, and business continuity.
For more information on how Sky Express can assist you in strengthening your company's information security and compliance with NIS2 and GDPR, contact us today.
