The EU adopted Council Regulation (EU) 2019/796 and Council Decision (CFSP) 2019/797 in May 2019 to establish a new sanctions regime to deter and respond to malicious cyber activities on EU member states, third states and international organisations.
The UK adopted The Cyber (Sanctions) (EU Exit) Regulations 2020 in January 2021 to further the prevention of cyber activity that undermines the integrity, prosperity or security of the UK, causes economic loss, undermines the effective functioning of international organisations or NGOs, or affects a significant number of persons in an indiscriminate manner.
