Migration and Home Affairs

Cybercrime

Policy

E-evidence

New rules and practical measures to make it easier and faster for law enforcement and judicial authorities to obtain the electronic evidence they need to investigate and eventually prosecute criminals and terrorists.

Encryption

Non-legislative measures to support law enforcement authorities in overcoming challenges posed by encryption in the context of criminal investigations while respecting the strong encryption and do not prohibit, limit or weaken encryption.

Non-cash payment fraud

Technology neutral and future-proof approach, and criminalising the possession, sale, procurement for use, import or distribution of stolen or counterfeited payment instruments.

Child sexual abuse

Protection of children through legal framework, funding and coordinating actions to fight child sexual abuse.

Actions

Law

Monitoring and updating EU law on cybercrime:

EU legislation on cybercrime corresponds to the rules set out in the Council of Europe Convention on Cybercrime.

Coordination

Support to agencies:

- European Cybercrime Centre  in Europol - acts as the focal point in the fight against cybercrime in the Union, pooling European cybercrime expertise to support Member States' cybercrime investigations and providing a collective voice of European cybercrime investigators across law enforcement and the judiciary. The Commission ensures alignment of EC3's work with the EU cybercrime policy, ensures that EC3 has sufficient resources, and promotes its work.

Public-private cooperation, e.g. WePROTECT Global Alliance (child sexual exploitation online).

Internet governance, e.g. the Public Safety Working Group  (PSWG) of the Governmental Advisory Committee of the Internet Corporation for Assigned Names and Numbers (ICANN)

At international level, the Council of Europe Convention on Cybercrime

Funding

Internal Security Fund - Police
Building law enforcement's capacity and supporting public-private cooperation through direct project financing and indirect project financing Internal Security Fund-Police – ISF-P.

Objectives

  • To improve the prevention, investigation and prosecution of cybercrime and child sexual exploitation
  • To build capacity in law enforcement and the judiciary
  • To work with industry to empower and protect citizens

Context

What is cybercrime?

Cybercrime consists of criminal acts that are committed online by using electronic communications networks and information systems. It is a borderless problem that can be classified in three broad definitions:

  • Crimes specific to the Internet, such as attacks against information systems or phishing (e.g. fake bank websites to solicit passwords enabling access to victims' bank accounts).
  • Online fraud and forgery. Large-scale fraud can be committed online through instruments such as identity theft, phishing, spam and malicious code.
  • Illegal online content, including child sexual abuse material, incitement to racial hatred, incitement to terrorist acts and glorification of violence, terrorism, racism and xenophobia.

EU response to Cybercrime

The EU has implemented legislation and supports operational cooperation through non-legislative actions and funding.

Documents