European Union's First Cybersecurity Law Gets Green Light

An anonymous reader quotes a report from Bloomberg: The European Union approved its first rules on cybersecurity, forcing businesses to strengthen defenses and companies such as Google Inc. and Amazon.com Inc. to report attacks. The European Parliament endorsed legislation that will impose security and reporting obligations on service operators in industries such as banking, energy, transport and health and on digital operators like search engines and online marketplaces. The law, voted through on Wednesday in Strasbourg, France, also requires EU national governments to cooperate among themselves in the field of network security. The rules "will help prevent cyberattacks on Europe's important interconnected infrastructures," said Andreas Schwab, a German member of the 28-nation EU Parliament who steered the measures through the assembly. EU governments have already supported the legislation. The EU Parliament also noted that network-securitiy incidents resulting from human error, technical difficulties, technical failures or cyberattacks cause annual losses of upwards of $377 billion (340 billion euros).

bad security mostly not human error

[turkeydance]

it's human on purpose

Finally.

[AlphaBro]

This has been a long time coming. Companies should be held accountable for their negligence.

Re:Finally.

I'm sure Enron was just trying to "get stuff done" too. Regulation to preserve economic welfare is necessary both in financial and information sectors.

Re:Finally.

Yeah right. I see companies intentionally cutting corners on every point trying to save money "getting things done". If they can get away with it, they will. The industrial sector is the worst. Please go visit your local urgent care facility and see how many people have lost fingers on a daily basis because some boss wants to "get things done" while bypassing safeties on machines.

Re:Finally.

This has nothing to do with cyber security and everything to do with the EU worming it's way into the lives of every European. This is not what people had in mind when they signed up for the EU.

Re:Finally.

oh for christ sake, most companies are just trying to get stuff done, not intentionally choosing to have exploits.

No fucking shit, sherlock. That's THE POINT of regulation, is companies get busy 'doing stuff' and ignore health, safety and security consequences. Can you drive your car into the back of someone else's can you say "oh sorry officer, I was just trying to get stuff done, I didn't mean any harm!" and get off? No? Did you bother to knock even 2 brain cells together before typing this?

Re:Finally.

[AlphaBro]

Your misuse of the word "exploit" ("vulnerability" was what you were looking for) shows how much you know about the topic. If companies output low quality code, they should be punished for putting their users at risk. It doesn't matter if they are "just trying to get stuff done".

Re:Finally.

[Opportunist]

This has nothing to do with "getting stuff done" and everything with not wanting to spend money on something that doesn't make them money. Do you think the chemical industry was too keen on buying those protection suits and air filtering for their workers? I mean, why bother, if one of them gets killed by chlorine gas, there's plenty of unemployed out there who're happy for getting a job.

They're not intentionally choosing to have exploits. They just intentionally choose to not give a shit because it's cheaper and increases the profit. Corporations are not "evil". They don't dump oil into the sea because they want to poison the fishes, they do it 'cause it saves them money.

Re: Finally.

This. Lots of .uk people came out of the polling stations, asking themselves "so what the EU?"

Most people are not qualified to make decisions.

Re:Finally.

[AmiMoJo]

Corporations are not "evil". They don't dump oil into the sea because they want to poison the fishes, they do it 'cause it saves them money.

That fits the definition of "evil" in my book.

Re:Finally.

[dave420]

Apart from the fact it has everything to do with cyber security and nothing to do with worming its way into the lives of every European. Protection of the people was exactly what people had in mind when signing up for the EU. Or are you really that ignorant of the EU? Amazing.

Re: Finally.

This. People need the EU. People need purpose and guidance in their life. The EU can and WILL provide that.

Re: Finally.

Actually, everyone that's anti-Brexit isn't qualified to make decisions since they don't even know why they're apart of the EU to begin with. They keep blaming 'old people' for Brexit yet they're completely ignorant to the fact that these 'old people' brought them into the EU. They initially voted to join the EEC (European Economic Commission) back in 1975 since England's economy, and many others, were in dire straits. However, as time went on it morphed into something that it was never intended to be and now the European Commission's courts supersedes the courts of EU member states which completely negates their sovereignty.

It's becoming a socialist nation run by an oligarchy which is a fucking terrible combination.

Re:Finally.

Oh, so you have some keen insight in to what they intend to do to increase cyber security?

What, like forcing everyone to install a governmental backdoor to which the EU holds the golden key?

Since when have bureaucrats ever been security savvy?

I thought this was a tech site yet we have idiots like this posting?

Re:Finally.

[dave420]

You can read the entire proposal to find out what they intend to enact. This is how this stuff works. It's true, the bureaucrats are not tech-savvy, which is why they consult industry to find out about these things. I can't believe this needs to be explained to you. How you can argue against the EU when they have enacted some of the most stringent privacy laws the world has ever seen - designed precisely to protect users from the large companies desperate to harvest their data for nefarious purposes, is also beyond me. It's almost as if it's not the EU but your own imagined version of it that you are annoyed with. Did you accidentally get the EU and the Empire mixed up in your head?

Re: Finally.

So in other words the European Union is a Marxist cult or rather the Soviet Union 2.0?

I think I know how this story ends since it's the same in every book: 10s if not 100s of millions dead.

Re: Finally.

[dave420]

Ooooh I get it now. You have no idea what the EU does, how it consists of elected members from the member states, what "sovereignty" means, or the function of the EU courts. And yet here you are, proudly (yet anonymously - rather telling) proclaiming to the whole world that you simply don't understand it, and that you pine for earlier days where your nostalgia and bizarre sense of patriotism can skip merrily down country lanes while Dame Vera Lynn serenades you.

I hate to break it to you, but why "we" are in the EU to begin with has absolutely nothing to do with this. We can't turn back the time to 1975 and have a do-over. What we do know, however, is that the recovery of Britain since then is due in part to its EU membership. We do know with incredible certainty that Britain's manufacturing industry and seat of the world's financial capital are entirely due to being in the EU. Countries are entirely sovereign as they still have the last say in adopting the regulations - they can choose to not do so if they wish, at the expense of the benefits adopting them brings. This is really basic stuff and it seems you don't understand one iota of it.

Your ignorance is astounding.

Re:Finally.

[Opportunist]

It's not the comic-book mustache-twirling super-villain evil who does "evil" for the sake of being evil.

Re:Finally.

If they are negligent, and have cause you harm, then sue. But that does not close down the internet, crush small businesses, and erect more mercantilism as the upcoming laws are designed to.

Re: Finally.

The EU is a New World Order Experiment of folks like Merkel, Soros, Nuland, Albright etc.

Their lives are so convenient and secure they decided to fuck up a half-continent, starting with the Mohammedization of Germany.

And the German police and army officers are as obedient order-executors as always. Whatever the FuehrerIn says will be realized. The media corps are also obedient to her.

And Germany is the core of the EU.

Re:Finally.

You can start by jailing all employees of MSFT, Oracle, IBM and so on. Taking shortcuts is a the Modus Operandi in the IT industry. They call it "agile", when they mean "fast spinning hamster wheel of crap code generation".

Re: Finally.

So what. Even one billion dead would be a small price to pay if it means imposing European rule on the world.

Re: Finally.

They say xenophilia is cultural suicide, but they don't care.

Re: Finally.

I stopped after "how it consists of elected members from the member states"...

Representatives electing representatives is not a democracy.

That's called an oligarchy.

Re:Finally.

I love how you don't cite a single thing to back up your argument.

Re: Finally.

no its called a republic

Re:Finally.

[Coren22]

You know, it really isn't hard to find the information about what is happening.

https://ec.europa.eu/digital-s...

You could have found that in about 10 seconds on Google, but instead you spent that amount of time railing at dave420 for not feeding you like an infant.

Re:Finally.

Correct. It's easy to find out how badly you fared against apk on security and more 3 times in your post history https://slashdot.org/comments.... , https://apple.slashdot.org/com... , https://apple.slashdot.org/com...

Re:Finally.

[Coren22]

https://slashdot.org/comments....
You lose the argument when you have to agree with yourself to look like others agreeing with you. Keep the tactic up, it just makes you look like a lonely person defending their mental illness.

https://slashdot.org/comments....
Get the treatment you so desperately need APK before it is too late!

https://slashdot.org/comments....
Your arguments have been refuted so much that there is no point in refuting them again, I will keep linking to it until you get it. You have lost the argument. Good night sir.

Brexit

[manu0601]

Will it apply to UK?

Re:Brexit

[serviscope_minor]

Depends when it's passed.

The referendum voted for Brexit, but that was not a binding referendum. That means the government can wait as long as it likes to actually leave (or in fact not), during which time we're a fully paid up member of the EU with all the rights and all the responsibilities which includes implementing any new legislation.

And even it we do leave after it, a lot of our general legislation on all sorts of things comes via Europe. The government will then have to decide what to scrap, what to keep and what to modify. I suspect most of it will just be kept as-is since it needs to be there in some form and it would be far too much work with no political capital to amend obscure laws just because.

Re:Brexit

Will it apply to UK?

They haven't left the EU yet, so yes, it will. It's also possible that British companies will be required to comply even after leaving the EU - if they want to provide services to citizens in the EU, but I'm not sure how that'd work legally.

Re:Brexit

As you can see in the summary the examples given are Google and Amazon.
Neither of them have their headquarter in a European country.
This law will apply to companies operating in a EU member country.
As soon as the UK actually leaves the EU their companies will not have to comply as long as they stay away from the EU market.

Considering that EU is the worlds largest unified market very few companies actually want to do that. That is why EU have to power to tell Google and Amazon what to do.
UK have only voted for not being a part of those who gets to dictate the rules. I don't see any realistic way for them to avoid following the rules.

Re: Brexit

TTIP will take care of that. Soon the EU will just be a market and nothing more. Any attempt at regulation will be met by economy-killing lawsuits but, really, no resistance is expected. There will be the usual hand-wringing, denial and rage, but the new status quo will be accepted. There is no other choice. Economy is too important to let politicians and plebes touch it.

Re:Brexit

[Coisiche]

I suspect most of it will just be kept as-is

Yeah, 'cos our MPs would never favour the wants of their corporate chums over the needs of the general public.

But then most of the leg work is going to be done by unknown civil servants (probably aided by highly paid consultants since the civil service is going to be struggling to meet the deadlines) with parliament just rubber stamping it and maybe a few MPs throwing in suggested amendments. I don't think it's going to go smoothly.

Re:Brexit

[AmiMoJo]

It's even more complex than that. It will likely take decades to figure out which bits of "EU" legislation we want to repeal, and since most of what people call "EU" regulation is actually only remotely related to being in the EU it's not even clear what proportion that accounts for. Best guess is around 15% of our laws.

However, it also depends on if we stay in the Single Market. If we do we will probably have to accept rules like this. That would be the best outcome for everyone - We get the benefit of the market, a stable economy and the rules that protect us (the electorate I mean), it discourages other EU members from leaving and the EU gets to power ahead without us trying to drag them backwards.

Re:Brexit

However, it also depends on if we stay in the Single Market. If we do we will probably have to accept rules like this.

If you decide to leave the single market every UK company that still wants to do business in the EU will still have to accept rules like this.
Google and Amazon are stationed in a country that isn't part of EU in any way. They still have to comply.

The main reason people voted for leaving EU is because they don't like cheap Polish workers and leaving EU would actually mean that you can turn those away.
The other possible benefits was mostly just excuses to not sound racists and those invented benefits will most likely not happen.

Re: Brexit

Any attempt at regulation will be met by economy-killing lawsuits

Have you ever tried, as a foreign company, to bring a lawsuit against a government on their own turf?
If you are stationed in the country where you bring the lawsuit you might have a shot. Otherwise? Good luck.

Re: Brexit

That's why I said TTIP will take care of that. It specifically gives corporations the power to sue governments for loss of revenue. Which means governments and yes, that includes the EU, better wise up.

Re:Brexit

[phantomfive]

It depends what agreements the UK makes with the EU if/when it exits

Re:Brexit

[manu0601]

The main reason people voted for leaving EU is because they don't like cheap Polish workers (...) The other possible benefits was mostly just excuses to not sound racists

One may refuse to have foreign workers operating on foreign labor laws, without being actually racist.

That's nice

But the real question is: what are they going to do about dedicated restrooms for fags?

Re:That's nice

[Opportunist]

Probably nothing. The EU is maybe inefficient and busying itself with trivial matters, but there are limits on HOW trivial a matter may be before even the EU says "Call someone who gives a shit".

We leave that to countries that don't want to tackle their real problems, so making up some new ones that they can then get worked up about is necessary to distract the people.

Re:Yet another example of EU overreach

[Plammox]

Economic integration requires common legislation. At least the bureaucrats were recruited based on skill based selection procedures. Most probably, they are better qualified than the populist idiots in the national parliaments.

Re:Yet another example of EU overreach

[lordholm]

What everyone signed up for was in-fact an ever closing union, with intent of forming a proper political union. In the case of the UK, political union was heavily debated in the 1975. Although many people claim that they where deceived and they never discussed the political union, looking at the records of what was said during the 1975 referendum campaigns, and the debates in the UK parliament, it is clear that this is utter bullshit.

Re:Yet another example of EU overreach

And who gets to decide who's skilled and who's not?

Sorry but representatives elected by representatives is the furthest thing from a democracy.

The EU is on it's way to becoming another failed socialist nation like all the rest.

Re:Yet another example of EU overreach

Sources or you're full of 'bullshit'.

Re:cyber world

Of course, the Marxist mods voted this post down.

1984 here we come...

UK

Will it prevent illegal and immoral spying by the UK?

Pffft

All the EU can do is to crack down on EU-based companies while Google, MS and Facebook will do whatever they like with the data collected in the EU.

This has the fully intended side effect of supporting the NSA-Google-Facebook Collection System.

Yeah, Experts, Or "Soviets"

that is the solution of you Marxists-Banksters, correct ?

Mission Creep

Like the afghan war, it was in reality Mission Creep:

1.) "we have to take out the evil terrorists"
2.) taking out
3.) "we now have to care about the poor girls of Afghanistan. Let's build schools"
4.) "We must fight the evil Taliban because they blow up our new built schools"
5.) "Taliban still attack all the nice wells, hospitals and the secret police we kindly installed for them"
6.) "we really need to intensify the efforts against these Taliban who resist our benevolent occupation"
7.) etc etc

Result: PROFIT for War Industry.

Same scheme was applied to the EU, which initially was just a EEC, but then morphed by politicos - without asking most of the people - into the "EU".

Re: Yet another example of EU overreach

[TechnoCore]

Skill based selection procedures. Not 'who', mr annonomous covard. Can't have direct voting for complex questions, since populistic clowns will the run the show, making the vote into and about something totally different.

Re:Yet another example of EU overreach

[dave420]

I guess you don't know that in the British parliament members from different parties are elected, and then those people select the prime minister? Either the EU and the UK are not democracies, or they both are. Pick one.

It doesn't particularly help your case when you don't know what "democracy" or "socialism" mean.

Re:Yet another example of EU overreach

Neither do you as it appears.

The EU was never meant to be a parliament, let alone, one elected by representatives of various nations without the approval of their peoples.

It was merely a means to tearing down economic barriers within the region and nothing more.

Re: Yet another example of EU overreach

To have such high faith in the 'political class' most of whom make their ends meet by adhering to the whims of the corporate elite....

Re:Yet another example of EU overreach

It's gone way beyond being an oligarchy, they've even or are attempting to build their own military in secret so as to enforce their will on all member states:

http://www.thetimes.co.uk/edition/news/eu-army-plans-kept-secret-from-voters-3j3kg3zwj

Why would the European Commission need an armed force if we already have NATO?

Re:Yet another example of EU overreach

[Plammox]

What? The European parliament *is* elected by the people and they have the final say over what the European Commission legislates. The head of the European Commission is appointed by the Council of Europe which is composed of (surprise, surprise) the governments of the respective European member states. The European Commissioners even have to be approved by the European Parliament.

Where is the democratic deficit in that?

Moreover, European officials are told to leave their national special interests at the door and work for the European people as a whole.

Re:Yet another example of EU overreach

[pjt33]

I guess you don't know that in the British parliament members from different parties are elected, and then those people select the prime minister?

Nonsense. In the British parliament members from different parties are elected, and then the monarch invites someone who she thinks can command the support of a majority of them to be PM.

Re:Yet another example of EU overreach

Way to to twist it all, but no, they don't you fucking lying sack of shit.

Name one piece of legislation since 2009 that a democratic vote ever took place.

Did you vote and agree to paying €250,000 for each so-called immigrant you refuse to take in?

Do you know who pays for that?

And did you vote for the Paris Climate agreement despite the fact that it's all based on a doom's day hypothesis that's never been validated by the IPCC despite all of the contradicting empirical evidence that says otherwise?

You hyper emotional regressives need to get your heads unstuck from your asses.

Re:Yet another example of EU overreach

[Plammox]

Dear Coward Anonymous: Please point out where I am lying. In the meantime, have a look at this video. I think Alan Moore's vision of a totalitarian Britain would agree with you.

Link to the actual law text

Anyone has the link?

Security+Web pros agree w/ me (not you)

"Macs have hosts files too & they are just as useless for what APK wants" - by Coren22 ( 1625475 ) on Friday July 08, 2016 @03:40PM (#52473587)

Coren22 7 security & web pros disagree w/ your offtopic bs (just as our /. peers did too in the link in my ps below too):

Aryeh Goretsky NOD32/ESET hosts = good security http://it.slashdot.org/comment...
Steven Burn of Malwarebytes does (hosting & recommending my ware no less - something YOU can never ever manage, lol).
Oliver Day (SYMANTEC/SECURITYFOCUS) http://www.securityfocus.com/c...
Brocke Wilders of WILDERS' SECURITY does http://www.wilderssecurity.com...
Steve Gibson https://www.grc.com/sn/sn-045....
OReilly for security http://oreilly.com/pub/a/windo...
OReilly for speed http://www.oreillynet.com/pub/...

APK

P.S.=> "EAT YOUR WORDS" (again) just like here vs. your offtopic ASSBURGER mental defective brain bs here too WHERE OUR /. PEERS AGREE w/ ME, not you Coren22, lol-> https://apple.slashdot.org/com... ... apk

Re:Security+Web pros agree w/ me (not you)

[Coren22]

Are you sure you don't suffer from Down's Syndrome? You are quoting a comment about Macs having hosts files and your software not working for Mac, by linking to comments by security researchers about how good hosts files are. This all in response to a post that completely thrashes every one of your arguments, including whatever you are trying to claim here.

Perhaps you should get your head checked, as it looks like you don't even understand basic conversation techniques.

Also, insulting me doesn't cause you to somehow win an argument that you have already lost. No matter how many time you try to claim I have a "ASSBURGER mental defective brain", it won't make you suddenly win an argument. Also, calling me offtopic when I am responding directly to what you posted is a joke, that means you have identified that YOU are the offtopic one, so why should I care if you think I am offtopic, you can see I didn't get down-modded for it.

So, EAT YOUR WORDS. You have failed to make your point, you have failed to justify why your solution is needed, you have failed to refute any of my points, and you still haven't addressed the massive speed loss of using your solution.

Keep tilting at those windmills Quixote, I am sure they will surrender eventually.

Re:Security+Web pros agree w/ me (not you)

Coren22 you said hosts files don't work. Apk proved they do using 7 respected security web pros to do it + testimonials from our /. peers to shut your big mouth down with. Have you done better work in software? Not that I've seen.

Re:Security+Web pros agree w/ me (not you)

Coren22 hosts DO work on Macs. You even said it but they will do what they do there as they do on Windows as APK says.

Re:Security+Web pros agree w/ me (not you)

[Coren22]

Everything typed in the comment above agrees with what I said. I said APK's software doesn't run on Macs, I never said hosts files don't function on Macs.

Re:Security+Web pros agree w/ me (not you)

[Coren22]

APK, you are putting words in my mouth.

https://en.wikipedia.org/wiki/...

I NEVER typed that hosts files don't work. I never said hosts files don't work. You are arguing with a straw man of your own manufacture, not anything you can quote from me.

Re:Security+Web pros agree w/ me (not you)

Douche when you can do better then talk ok? You're a stupid wannabe, nothing more. Do you even work in this industry? Prove it. We know you can't.

Re:Security+Web pros agree w/ me (not you)

No Coren22. You explicitly state hosts won't work on Macs. You never note APK's program in that quote or the original at all.

Re:Security+Web pros agree w/ me (not you)

[Coren22]

Um, then you have the reading comprehension of a toddler. No, nowhere in there does it say hosts don't work on Mac.

Hosts are faster than what YOU like... apk

"you still haven't addressed the massive speed loss of using your solution" - by Coren22 ( 1625475 ) on Monday July 11, 2016 @01:38PM (#52490217)

See subject & that quote from you Coren22 you imbecile: Hosts are FASTER than "AlmostALLAdsBlocked" http://superuser.com/questions/686041/which-leads-to-faster-browsing-an-ad-blocker-or-an-edited-hosts-file & I've shown you THAT before from other tests + links there too... lol!

(My program covers disabling any slowdowns due to the DEFECTIVE w/ large hosts files MS slower usermode dns clientside cache service - disable it & you not only go FASTER but with more CPU cycles, RAM, + other forms of I/O available too!)

APK

P.S.=> So eat your words yet again, brain defective loser that you are... apk

Coren22 you're an undereducated imbecile

See subject: You're a fucking MENIAL wannabe, nothing more - create something BETTER than I have moron... that'd be something.

* Of course THAT will never happen... no more than you can prove you actually WORK in this industry (which is no problem for me on TONS of grounds possibly longer than YOU have been alive).

APK

P.S.=> No more than "you & yours" will EVER be able to stop me OR validly technically prove me wrong... lol (perhaps on "the 12th of never")... apk

Re:Coren22 you're an undereducated imbecile

[Coren22]

Aww, did poor diddums get insulted that he made a serious reading mistake?

I have already answered everything in this post at least five times before, I will leave you wanting yet again, as I rather like my job and wouldn't want to lose it just to prove you wrong. Also, it is not necessary for me to prove my experience and prove myself more credentialed than you to prove you wrong on your points. As I have given the citations for my answers, their credentials is what you have to beat.

Since you can't even understand basic English, why do you suddenly think you are so much better than me?
 

Re:Coren22 you're an undereducated imbecile

Coren22 you clearly don't have a job let alone one in computing. If you were better than apk you'd build better programs than he has. All you do is troll everyone here by the dozens of posts all day long most times off topic which proves you're unemployed.

Re:Coren22 you're an undereducated imbecile

[Coren22]

I did, and you responded to the post about it just now.

I have a job, clearly one better than yours as you seem to live in your mom's basement, while I own my own house and drive a nice car.

Re:Coren22 you're an undereducated imbecile

Sure, sure. Now citation Mr. Coren22 (what you're so fond of using yourself no less when you troll others): Prove you have a job in computing. Prove it.

Re:Coren22 you're an undereducated imbecile

[Coren22]

Why should I prove anything to you? You have never proven the same, and your examples of your abilities would have you fired from my office, so I can't imagine that you ever worked professionally in security or programming.

So, you can feel free to prove your experience in programming, but I won't prove my security or job experience, which you already know. I can't give company proprietary information.

Re:Coren22 you're an undereducated imbecile

What a crock of an evasion. Most of us can show things we've done by the score. Apk can even. You can't. Thanks for proving you're jobless.

Re:Coren22 you're an undereducated imbecile

[Coren22]

Yup, totally. APK can prove he wrote a piece of software that is proven shit, and can prove he wrote a document collected from many other people's work about how to setup Windows 2000. That totally equates to proving himself incompetent. Thank you for playing, you fail.

Quit defending yourself APK, no one thinks this is some random third party also posting anonymously, but using the exact same arguments you use.

Also, what I do for a living has nothing to do with the arguments I make, as I don't try to appeal to authority like you do APK, I prove you wrong without showing my credentials, and as you have never shown yours, why should I show mine?

Coren22 other /.'ers defend me vs. that bs

his hosts program is actually pretty good by xenotransplant

his hosts tool is actually useful for those cases in which one does indeed want to locally block stuff outright while consuming minimum system resources by alexgieg

I've never tried to belittle (APK's) work, I've flat out said it's good by BronsCon

I like your host file system by Karmashock

I find your hosts file admirable by vel-ex-tech

take a look at the APK hosts file engine by SuperKendall

APK is kinda right... I've tried his hosts file generating software. It works by bmo

* Want more such testimonials from our /. peers? Just ask & "ye SHALL receive" (many more - you know - what YOU will never manage, let alone the best antimalware's people hosting + recommending my ware too!).

APK

P.S.=> I wrote those security guides of mine while you were probably in diapers (1996 onward)

Now you're projecting WHAT YOU DO via the work of others like myself LONG before you even probably professionally entered computing... apk