Sanctions Profile: Cyber-Attacks

At a glance

The EU adopted a new sanctions regime in May 2019 to deter and respond to malicious cyber activities on EU member states, third states and international organisations.

Subscribe for full access


3rd countries align with EU sanctions on cyber-attacks, Iran and Syria

Cyber-attacks On 17 May, the Council adopted Decision (CFSP) 2019/797 to establish a new sanctions regime “to deter and respond to cyber-attacks which constitute a threat to the Union or its member states”. North Macedonia, Montenegro, Serbia, Albania, Bosnia and Herzegovina, Iceland, Norway and Georgia have aligned themselves with this decision. Press release. Syria Also […]

Cyber-AttacksCyber-Attacks IranIran SyriaSyria

UK cyber sanctions regulations

The UK has published The Cyber-Attacks (Asset-Freezing) Regulations 2019 which will come into force on 11 June 2019, to transpose the new EU sanctions regime into UK law targeting those responsible for cyber-attacks on EU member states, third states or international organisations (see post). These measures comprise asset freezing measures on persons or entities and […]


New EU cyber-attack sanctions regime

The EU has a new sanctions regime, for targeted sanctions to “deter and respond to cyber-attacks which constitute a threat to EU member states, third States or international organisations” under Council Regulation (EU) 2019/796 and Council Decision (CFSP) 2019/797. Travel bans and asset freezing measures can be imposed on those “responsible for cyber-attacks or attempted […]


Current Sanctions


Council Regulation (EU) 2019/796

Council Decision (CFSP) 2019/797

The Cyber-Attacks (Asset Freezing) Regulations 2019 (SI 2019/956)