(Reuters) — Geopolitics such as Russia’s invasion of Ukraine have led to more malicious and widespread cyber security attacks in the year to July, the European Union’s cyber security agency ENISA said in its annual report on Thursday.
ENISA’s study follows concerns about the role of state actors and the growing range of threats to governments, businesses and key sectors such as energy, transport, banking and digital infrastructure.
The agency said geopolitical situations – in particular the Russian invasion of Ukraine – changed the game during the period under review.
Zero-day exploits, where hackers exploit vulnerabilities in software before developers have a chance to fix the flaws, as well as artificial intelligence-enabled disinformation and deep spoofing, resulted in more damaging and widespread attacks with more damaging impact, it said.
“Today̵7;s global context is inevitably driving major changes in cybersecurity threats. The new paradigm is shaped by the growing range of threat actors,” ENISA Executive Director Juhan Lepassaar said in a statement.
About 24% of cyber security attacks targeted public administration and governments while 13% targeted digital service providers, according to the report.
The European Union agreed in May on tougher cyber security rules for key sectors, requiring companies to assess their risks, notify authorities and take steps to manage the risks or face fines of up to 2% of global turnover.