TÜV Rheinland: Cyber security requirements are growing rapidly

New, increasingly complex regulations, ever more sophisticated cyber-attacks and a growing number of security vulnerabilities – cyber security is putting companies under increasing pressure. Experts from TÜV Rheinland, one of the world’s leading providers of testing and inspection services, are now providing guidance on these three key cyber security trends in expert interviews and highlighting approaches that can lead to an effective strategy for greater cyber securit

CRA, NIS-2, RED: Complex regulatory environment for companies

Take regulatory requirements, for example: The European Union’s Radio Equipment Directive (RED) will be expanded to include cybersecurity requirements on August 1, 2025. From then on, devices sold in the EU with built-in radio technology must comply with the RED cybersecurity requirements. In addition, there is the second EU Directive on network and information security (NIS-2) and the Cyber Resilience Act (CRA), which affect an ever-increasing number of companies and products. “Globally active companies must also harmonize different regulations. This is a particularly big challenge, as some countries, such as the US, tend to favor risk-based approaches, while the EU often has stricter security requirements and reporting obligations,” explains Felix Brombach, Practice Leader for OT Security at TÜV Rheinland.

Fundamental errors still widespread

Cyberattacks are also becoming increasingly complex. In 2024, for example, multiple extortions were widespread among cybercriminals: attackers no longer limit themselves to encrypting data but also threaten to release sensitive information if a ransom is not paid. “In view of the threats, companies should avoid some fundamental mistakes that we still see, such as inadequate backups, insufficient employee training, outdated systems, non-existent incident response plans, and paying ransom,” reports David Allen, team leader for cybersecurity at TÜV Rheinland.

More and more points of attack

In addition to complexity, companies’ IT departments are also concerned about the ever-increasing number of potential points of attack for cybercriminals. The growing connectivity of Internet of Things (IoT) devices, cloud services, decentralized networks, and the use of AI are increasing security risks. Sectors such as healthcare, finance, and education are particularly at risk, according to Massimiliano Latini, cybersecurity expert at TÜV Rheinland: “Organizations are forced to adapt their IT security strategies accordingly—for example, through proactive security measures and the automation of security processes.”

Further information can be found in the interviews published at www.tuv.com/cybersecurity-trends.

Firmenkontakt und Herausgeber der Meldung:

TÜV Rheinland
Am Grauen Stein
51105 Köln
Telefon: +49 (221) 806-2148
http://www.tuv.com

Ansprechpartner:

Alexander Schneider
Senior Communication Manager
Telefon: +49 (0) 221 806-5210
E-Mail: contact@press.tuv.com

Weiterführende Links

Für die oben stehende Story ist allein der jeweils angegebene Herausgeber (siehe Firmenkontakt oben) verantwortlich. Dieser ist in der Regel auch Urheber des Pressetextes, sowie der angehängten Bild-, Ton-, Video-, Medien- und Informationsmaterialien. Die United News Network GmbH übernimmt keine Haftung für die Korrektheit oder Vollständigkeit der dargestellten Meldung. Auch bei Übertragungsfehlern oder anderen Störungen haftet sie nur im Fall von Vorsatz oder grober Fahrlässigkeit. Die Nutzung von hier archivierten Informationen zur Eigeninformation und redaktionellen Weiterverarbeitung ist in der Regel kostenfrei. Bitte klären Sie vor einer Weiterverwendung urheberrechtliche Fragen mit dem angegebenen Herausgeber. Eine systematische Speicherung dieser Daten sowie die Verwendung auch von Teilen dieses Datenbankwerks sind nur mit schriftlicher Genehmigung durch die United News Network GmbH gestattet.