In recent months, disruptive digital attacks, many traced to Russian-backed groups, have surged within the European Union (EU), with a notable increase in assaults on election-related services. This troubling development was emphasized by Juhan Lepassaar, the head of the European Union Agency for Cybersecurity (ENISA), in a recent interview with The Associated Press.

Lepassaar revealed that the frequency of these cyberattacks has doubled, raising significant concerns about the integrity and security of the EU’s democratic processes. The attacks are not only increasing in number but also in sophistication, making them more challenging to detect and mitigate. Election-related services, including voter databases, election infrastructure, and information systems, have become prime targets for these malicious activities.

The surge in cyber threats underscores the need for enhanced cybersecurity measures across the EU, particularly as member states prepare for upcoming elections. Lepassaar stressed the importance of vigilance and the adoption of robust security protocols to protect against these persistent threats. He called for greater cooperation and information sharing among EU countries to strengthen collective defenses against cyberattacks.

As digital threats continue to evolve, the EU faces a critical challenge in safeguarding its democratic institutions from interference, ensuring that election processes remain secure and trustworthy amidst an increasingly hostile cyber landscape.

Lepassaar disclosed that attacks with geopolitical motives have risen steadily since Russia’s full-scale invasion of Ukraine on February 24, 2022. This significant escalation in cyber threats poses a critical challenge for EU member states, especially with crucial elections on the horizon. “The number of hacktivist attacks on European infrastructure—by threat actors whose main aim is to cause disruption—has doubled from the fourth quarter of 2023 to the first quarter of 2024,” Lepassaar stated during the interview at ENISA’s headquarters in Athens.

The timing of these attacks is particularly concerning as citizens from the EU’s 27 member states are set to vote from June 6-9 for lawmakers in the European Parliament. This election will also play a crucial role in shaping the EU’s executive branch, the European Commission. The threat is not confined to Europe; similar concerns are rising in the United States, Britain, and other countries facing upcoming elections, prompting security agencies to ramp up their efforts to counteract disruption campaigns funded by adversaries.

In Belgium, the stakes were underscored when officials reported that police had carried out searches at the residence and office of a European Parliament employee in Brussels over suspected Russian interference. This incident highlights the tangible threat of foreign meddling in democratic processes and underscores the importance of heightened vigilance and robust cybersecurity measures.

To address these growing threats, ENISA has been at the forefront of leading exercises and conducting intensive consultations aimed at strengthening the resilience of election-related agencies within the EU. For the past seven months, these efforts have been a key focus of the agency. In its annual report for 2023, ENISA noted a marked surge in ransomware attacks and incidents specifically targeting public institutions, further emphasizing the urgent need for enhanced cybersecurity measures.

Lepassaar pointed out that the attack methods, while not always successful, often undergo initial trials in Ukraine before being expanded to EU countries. “This is part of the Russian war of aggression, which they fight physically in Ukraine, but digitally also across Europe,” he explained. This strategy of testing and refining cyberattack techniques in conflict zones before deploying them in broader geopolitical contexts adds a layer of complexity to the cybersecurity landscape in Europe.

Experts are also increasingly concerned about the role of artificial intelligence (AI) in amplifying these threats. AI tools are being used to target Western voters at an accelerating speed and scale, spreading misleading or false information through hyperrealistic video and audio clips known as deepfakes. This advanced technology poses a significant challenge for cybersecurity agencies striving to protect the integrity of information and democratic processes.

Lepassaar emphasized the severity of this threat, noting that member states’ cybersecurity agencies have identified AI-enabled disinformation and information manipulation as a major concern. His comments resonate with a warning issued earlier this month by U.S. Director of National Intelligence Avril Haines, who highlighted that technological advancements will enable more nations and groups to launch effective disinformation campaigns. The collaboration between U.S. and European experts is crucial in helping security agencies anticipate and counter these emerging digital threats and vulnerabilities.

In their efforts to safeguard critical sectors, ENISA has pinpointed several areas that require particular attention. These include food production, satellite management, and self-driving vehicles. The interconnectedness of these industries with digital technologies makes them potential targets for cyberattacks, which could have far-reaching consequences beyond the immediate disruptions.

Lepassaar argues that a fundamental shift in how society perceives and engages with digital security is necessary. Cybersecurity, he asserts, must become second nature to both designers and consumers. “We face a societal challenge to understand digital security similarly to how we understand everyday traffic security,” he said. “Just as we are alert when driving, we need to develop similar behaviors and habits for operating in any digital environment.”

This analogy underscores the importance of constant vigilance and proactive measures in maintaining cybersecurity. Just as drivers must be aware of their surroundings and potential hazards on the road, individuals and organizations must be continuously alert to the ever-evolving cyber threats in the digital realm. This mindset shift is essential for building a resilient and secure digital infrastructure.

In practical terms, this means integrating cybersecurity considerations into every aspect of digital design and usage. For designers, this involves embedding security features into products and services from the outset, rather than as an afterthought. For consumers, it means adopting best practices for online safety, such as using strong passwords, enabling two-factor authentication, and staying informed about potential threats.

The increasing sophistication of cyber threats also necessitates ongoing education and training. Cybersecurity awareness programs can play a pivotal role in equipping individuals with the knowledge and skills needed to protect themselves and their organizations from cyberattacks. Such programs can help foster a culture of security that permeates all levels of society, from individual users to large enterprises.

Moreover, international cooperation and information sharing are critical components of an effective cybersecurity strategy. By collaborating across borders, countries can share intelligence on emerging threats, develop joint responses to cyber incidents, and strengthen global cyber defenses. This collective approach is vital in addressing the transnational nature of cyber threats.

In conclusion,

The European Union is grappling with a surge in disruptive digital attacks, a trend exacerbated by the aggressive cyber operations of Russian-backed groups. This alarming escalation poses a significant threat to critical infrastructure, economies, and democratic processes. As elections approach both within the EU and globally, the risk of cyber interference looms large, capable of undermining electoral integrity and eroding public trust.

To counter this growing menace, the European Union Agency for Cybersecurity (ENISA) is taking crucial steps to fortify the resilience of election-related agencies. By bolstering their defenses, ENISA aims to safeguard the electoral process from malicious cyber activities that could manipulate outcomes or sow discord. However, addressing this complex challenge requires a multifaceted approach that extends beyond the purview of a single organization.

Increased public awareness of cyber threats is paramount. Educating citizens about the tactics employed by cybercriminals and empowering them to recognize and report suspicious activities is essential. Moreover, fostering international cooperation is vital to effectively combat transborder cyberattacks. By sharing intelligence, best practices, and resources, nations can collectively strengthen their defenses and disrupt the operations of malicious actors.

Ultimately, safeguarding democratic institutions in the face of evolving cyber threats demands a comprehensive and proactive strategy. This includes not only bolstering cybersecurity defenses but also fostering a culture of digital resilience. By investing in research and development, promoting cybersecurity education, and establishing robust international partnerships, the EU and other democratic nations can work towards a future where elections are conducted free from undue digital interference.