The European Union has reportedly drafted plans for a new cyber security task force that will respond to attacks across the bloc.
The 'Joint Cyber Unit' could be unveiled by the European Commission as soon as Wednesday, according to proposals seen by Politico.
What is ransomware?
The unit would allow member states hit by cyber attacks to ask for help from other countries within the EU, including through rapid response teams that will be deployed to fight off hackers "in real-time", according to the draft.
The plans come in response to the growing threat of cyber attacks that have plagued the continent over the last few years, which included the first death caused by a ransomware attack on a Berlin hospital, earlier in the year. The drafted plans aim to pool together the cyber security powers of all the national governments within the bloc.
A specific, central cyber unit was first talked up by the commission in 2019, as a way of stopping cyber attacks that could compromise EU institutions, agencies and leading European companies and organisations.
RELATED RESOURCE
What is due to come on Wednesday is merely an official "recommendation" to national governments that would put the European Union Agency for Cybersecurity (ENISA) in charge of the unit, potentially from an office in Brussels, and will be similar to the Washington-based ransomware task force recently proposed by the US government. The European version would theoretically coordinate existing work between cyber agencies and authorities across the bloc.
"Over the last few weeks we have seen governments take positive steps to bolster cyber security, and this is another positive step," said Raghu Nandakumara, field CTO at Illumio.
"Cyber security is always most effective when there is healthy collaboration between groups, and in that light the formation of the Joint Cyber Unit by the European Commission is very welcome. It's a logical progression from the 2016 NIS Directive which required individual member states to be appropriately equipped, facilitated strategic cooperation and information exchange, and imbibed a culture of security in sectors critical to the economy and security."
-
Bigger salaries, more burnout: Is the CISO role in crisis?In-depth CISOs are more stressed than ever before – but why is this and what can be done?
-
Cheap cyber crime kits can be bought on the dark web for less than $25News Research from NordVPN shows phishing kits are now widely available on the dark web and via messaging apps like Telegram, and are often selling for less than $25.
-
‘Phishing kits are a force multiplier': Cheap cyber crime kits can be bought on the dark web for less than $25 – and experts warn it’s lowering the barrier of entry for amateur hackers
News Research from NordVPN shows phishing kits are now widely available on the dark web and via messaging apps like Telegram, and are often selling for less than $25.
-
Healthcare systems are rife with exploits — and ransomware gangs have noticedNews Nearly nine-in-ten healthcare organizations have medical devices that are vulnerable to exploits, and ransomware groups are taking notice.
-
Alleged LockBit developer extradited to the USNews A Russian-Israeli man has been extradited to the US amid accusations of being a key LockBit ransomware developer.
-
February was the worst month on record for ransomware attacks – and one threat group had a field dayNews February 2025 was the worst month on record for the number of ransomware attacks, according to new research from Bitdefender.
-
CISA issues warning over Medusa ransomware after 300 victims from critical sectors impactedNews The Medusa ransomware as a Service operation compromised twice as many organizations at the start of 2025 compared to 2024
-
Warning issued over prolific 'Ghost' ransomware groupNews The Ghost ransomware group is known to act fast and exploit vulnerabilities in public-facing appliances
-
The Zservers takedown is another big win for law enforcementNews LockBit has been dealt another blow by law enforcement after Dutch police took 127 of its servers offline
-
There’s a new ransomware player on the scene: the ‘BlackLock’ group has become one of the most prolific operators in the cyber crime industry – and researchers warn it’s only going to get worse for potential victimsNews Security experts have warned the BlackLock group could become the most active ransomware operator in 2025
