Beta

Source: OJ L, 2024/1772, 25.6.2024

EN

Recital 12 Classification of a cyber threats

Considering that cyber threats means ‘cyber threat’ as defined in Article 2, point (8), of Regulation (EU) 2019/881; can have a negative impact on the financial entity and sector, the significant cyber threats means a cyber threat the technical characteristics of which indicate that it could have the potential to result in a major ICT-related incident or a major operational or security payment-related incident; which financial entitiesas defined in Article 2, points (a) to (t) may submit should indicate the probability of materialisation and the criticality of the potential impact. Accordingly, to ensure a clear and consistent assessment of the significance of cyber threats means ‘cyber threat’ as defined in Article 2, point (8), of Regulation (EU) 2019/881;, the classification of a cyber threat means ‘cyber threat’ as defined in Article 2, point (8), of Regulation (EU) 2019/881; as significant should be dependent on the likelihood that the classification criteria for major incidents and their threshold would be met if the threat had materialised, on the type of cyber threat means ‘cyber threat’ as defined in Article 2, point (8), of Regulation (EU) 2019/881; and on the information available to the financial entity.

Table of contents

We're continuously improving our platform to serve you better.

Your feedback matters! Let us know how we can improve.

Contact us:

dora@springflod.se

Found a bug?

Springflod is a Swedish boutique consultancy firm specialising in cyber security within the financial services sector.

We offer professional services concerning information security governance, risk and compliance.

Crafted with ❤️ by Springflod