CADE Hub Topics Events Updates Resources Actors

EU prolongs sanctions for cyberattackers until 2026

This framework allows the EU to impose targeted restrictive measures on persons or entities involved in cyber-attacks which
cause a significant impact.
EU prolongs sanctions for cyberattackers until 2026

The Council of EU has prolonged the restrictive measures (sanctions) against cyber-attacks threatening the EU and its member states for a further year, until 18 May 2026. The legal framework (sanctions regime) for these measures is extended for three years until 18 May 2028. The sanctions target individuals and institutions involved in cyberattacks that pose a significant threat to the EU and its members.

The extended measures will allow the EU to impose restrictions on those responsible for cyberattacks, including freezing assets and blocking access to financial resources.

These actions may also apply to attacks against third countries or international organisations, if necessary for EU foreign and security policy objectives.

At present, sanctions are in place against 17 individuals and four institutions. The EU’s decision is part of the bloc’s ongoing commitment to safeguarding its digital infrastructure and maintaining its foreign policy goals through legal actions against cyber threats.

Civil Society Alliances for Digital Empowerment (CADE) is a project co-funded by the European Union.

Civil Society Alliances for Digital Empowerment (CADE) 2024. All rights reserved.

This website is co-funded by the European Union. Its contents are the sole responsibility of CADE and do not necessarily reflect the views of the European Union.

Web accessibility | Privacy policy

Go to Top