Advertisment

Hackers make way for criminals in cyberspace

author-image
CIOL Bureau
Updated On
New Update

BRUSSELS, BELGIUM: Attacking the European Union's Internet backbone is now the preserve of organized crime, not young hackers out to prove a point, the head of the bloc's Web security body said.

Advertisment

Andrea Pirotti, executive director of the European Network and Information Security Agency (ENISA), said public authorities have been able to hold their own in the contest so far.

"There is a continuous struggle between the attackers and the increases in protection of information systems. It's a contest," said Pirotti.

"We must prevent attacks becoming a digital 9/11," Pirotti said.

Advertisment

The economy of the EU's 27 nations, like elsewhere in the world, increasingly depends on a trouble-free Internet to operate but there have been reminders of what can go wrong.

Last year, government websites in Estonia crashed with the Baltic state accusing Russia of being behind what many saw as the first major cyber attack in Europe.

"Attacks can be very damaging but until now I can say the situation has been under control," Pirotti said.

Advertisment

But with a budget of just €8 million ($12.6 million) a year and a staff of 50, ENISA needs more resources, he added.

Pirotti declined to comment on Estonia's claims of Russian involvement in last year's attack but said lessons needed to be taken from the episode such as the need for a computer emergency response team or "digital fire brigade" in every EU state.

Pirotti said 14 teams have been set up with 10 more expected within the next two years.

Advertisment

Mandatory

EU telecoms commissioner Viviane Reding has proposed making the reporting of Internet security breaches at banks, companies and other institutions compulsory in order to build up a true picture and improve responses.

Pirotti said the controversial move should be supported although a balance was needed between informing consumers and not scaring them.

Earlier this month members of the European Parliament complained that ENISA had no remit to deal with cyber attacks such as that experienced by Estonia.

Advertisment

The agency has no powers to police or prosecute cyber terrorism and cyber crime, only to gather and share information among EU states and other stakeholders.

EU states are expected to approve extending ENISA's mandate by three years from 2009.

tech-news