European Union: Restrictive measures against entities to address cyber-attacks threatening the Union or its Member States (Implementing Regulation 2026/589)

Progress

Current status

adopted

16 Mar 2026 adopted

Scope

Implementers

Austria

Belgium

Bulgaria

Croatia

Cyprus

Czechia

Denmark

Estonia

Finland

France

Germany

Greece

Hungary

Ireland

Italy

Latvia

Lithuania

Luxembourg

Malta

Netherlands

Poland

Portugal

Romania

Slovakia

Slovenia

Spain

Sweden

Policy Area

Authorisation, registration and licensing

Policy Instrument

Prohibition of goods and services

Regulated Economic Activity

technological consumer goods

software provider: other software

Government Branch

executive

Government Body

central government

Implementation Level

supranational

Timeline of events

16 Mar 2026

adopted

Council of the European Union adopted restrictive measures against entities to address cyber-attacks

On 16 March 2026, the Council of the European Union adopted restrictive measures against three entities to address cyber-attacks threatening the Union or its Member States (Implementing Regulation 2026/589). The implementing regulation lists the Chi…

Source

Event type order

Action type adoption

Government branch executive

Government body central government

Progress

Scope

Timeline of events

Council of the European Union adopted restrictive measures against entities to address cyber-attacks

Related changes