Beta

Source: OJ L, 2025/302, 20.2.2025

EN

Article 8 Notification of significant cyber threats

    1. Financial entitiesas defined in Article 2, points (a) to (t) that notify significant cyber threats means a cyber threat the technical characteristics of which indicate that it could have the potential to result in a major ICT-related incident or a major operational or security payment-related incident; to competent authoritiesas defined in Article 46 in accordance with Article 19(2) of Regulation (EU) 2022/2554 shall use the template laid down in Annex III to this Regulation and follow the data glossary and instructions set out Annex IV to this Regulation.

    1. Financial entitiesas defined in Article 2, points (a) to (t) shall ensure that the information contained in the notification of significant cyber threats means a cyber threat the technical characteristics of which indicate that it could have the potential to result in a major ICT-related incident or a major operational or security payment-related incident; is complete and accurate.

Table of contents

We're continuously improving our platform to serve you better.

Your feedback matters! Let us know how we can improve.

Contact us:

dora@springflod.se

Found a bug?

Springflod is a Swedish boutique consultancy firm specialising in cyber security within the financial services sector.

We offer professional services concerning information security governance, risk and compliance.

Crafted with ❤️ by Springflod