4 European Laws That Are Important for Cybersecurity  

1. Dora: for the financial sector 

DORA stands for the Digital Operational Resilience Act. This law primarily targets the financial sector. The European regulation is intended to strengthen the operational resilience of financial institutions. This sector is, of course, already quite strictly regulated, but new laws continue to be introduced, particularly from the EU. The law applies not only to the financial sector but also to third-party IT suppliers, especially when it comes to cloud computing that supports critical functions.  

2. NIS2: One of the most important European laws on cybersecurity!

The NIS 2 Directive is primarily focused on improving the digital and economic resilience of European member states. There are eighteen sectors that will be affected by the NIS-2 Directive, and it primarily focuses on measures related to cybersecurity risk management and the reporting of incidents in this area. Companies sometimes tend not to report cybersecurity incidents because they fear it could damage their reputation. However, reporting incidents is actually a crucial source of data for preventing such incidents in the future! 

3. EU Cloud Certification Scheme  

The EU Cloud Certification Scheme is a framework for certifying the digital security of cloud service providers. The EUCS is part of the Cybersecurity Act (CSA) of 2019. The schemes used under this directive are not mandatory, but there is a strong likelihood that they will become mandatory in the future.

4. Cyber Resilience Act: One of the European laws on product cybersecurity

This EU regulation primarily focuses on hardware and software products. It therefore does not concern the digital resilience of organizations, but rather the products that organizations use. The Cyber Resilience Act sets requirements for the cybersecurity of digital products sold in the EU, such as software and IoT devices. These requirements are mandatory, so all products must comply with them—no exceptions. All products that are directly or indirectly connected to a network are subject to this regulation! 

What does ChatGPT Search bring to the table to compete with Google?

Of course, ChatGPT has long been used to perform searches in a similar way to how we would use Google. However, its capabilities in this regard were still limited. For example, the search function did not yet provide links to external sources, and search results were displayed only as text. ChatGPT Search not only provides answers in text but also includes links to external sources relevant to your query and, where possible, even photos, images, and visual data—such as graphs or tables. This makes the application a much stronger competitor to Google than it was before.

ChatGPT Search is an AI chatbot that cites sources

So ChatGPT actually offers real added value compared to Google, just like the AI bot Perplexity. After all, you don’t just get an answer to your question, but also a full list of sources with various links, so you can verify whether the answer is actually correct. This solves a major issue people have with using ChatGPT: you can never be sure if the answer it provides is accurate or where it gets its information from. OpenAI also recently announced that it has partnered with several companies to provide up-to-date information on topics such as the weather, sports scores, locations, and the news.

When will ChatGPT Search be available to everyone?

According to OpenAI, their search feature is now ready for the general public, but when will we all be able to use ChatGPT Search? Basically, starting right now! You can set ChatGPT as your default search engine if you want, instead of Google. In the Google Chrome browser, you can install an extension for this. The search feature is coming to the ChatGPT website and all apps. If you were on the waiting list for ChatGPT Search or have a ChatGPT Plus or Team account, you can start using the new feature right away. If you have an Enterprise or Edu account, the feature will become available to you sometime in the coming weeks. As a free user, you’ll have to wait a few more months, but eventually, everyone will be able to use ChatGPT Search instead of Google if they want!

Ransomware remains one of the biggest cyber threats  

Ransomware has been a major threat for years, and it remains a significant risk today. The number of cases in which people fall victim to ransomware hasn’t necessarily increased, but cybercriminals have found new ways to scam people with it. Criminals combine ransomware with data exfiltration and then threaten to make sensitive information public. For companies that work with sensitive data, it is now therefore especially important to ensure their systems are properly secured. Hackers are also increasingly exploiting legitimate tools within systems to stay under the radar. This makes it increasingly difficult to detect them.

Social engineering is becoming more inventive 

Social engineering also remains a common threat. Phishing is one of the most common forms of social engineering. Businesses, in particular, are increasingly affected by this, as fake emails are becoming harder and harder to distinguish from genuine ones. Today, cybercriminals use AI to make these emails look as real as possible. Through these emails, they try to gain access to company data or payments. As a business, it’s therefore wise to keep your staff vigilant about filtering out fake emails. This way, you can avoid a lot of trouble! 

Malware is becoming increasingly difficult to detect 

Of course, malware isn’t exactly a new phenomenon in the world of cybercrime. However, it’s becoming increasingly difficult to detect, which naturally makes it more dangerous. Advanced cybercriminals are now even offering malware-as-a-service. This allows criminals with less technical expertise to easily launch attacks on companies. Malware is also becoming increasingly sophisticated and thus better at evading detection. To achieve this, polymorphic techniques are used, which allow the malware to change its form to bypass antivirus software.  

The manipulation of information using AI is one of the biggest new cyber threats

Unfortunately, AI has opened up a lot of opportunities for cybercriminals. It has become easier to manipulate and deceive people by manipulating information with the help of artificial intelligence. For example, it is possible to mimic someone’s voice using AI. If you think you’re on the phone with a family member or close friend asking for money, it could just as easily be a cybercriminal. In addition, a lot of misinformation is being spread to manipulate people’s views and ways of thinking using AI. Do you receive a suspicious call from someone you think you know? Be vigilant and don’t jump to conclusions too quickly! 

DDoS attacks are a nightmare for businesses  

A DDoS attack has always been something every company fears, but this risk has now become much greater than it ever was. It is the most frequently reported threat, even more so than ransomware. Here, too, it is striking that cybercriminals are increasingly offering to carry out DDoS attacks for others in exchange for payment. This significantly increases the risk of large-scale attacks. As a result, DDoS attacks are currently one of the biggest cyber threats

Data breaches and attacks on supply chains  

Finally, the threat of data breaches is increasing dramatically this year. This is because attackers are taking a much more targeted approach. Attackers also often put more pressure on companies, for example by threatening to make certain data public. As a result, companies are less likely to report a cyberattack or data breach to the police. Cybercriminals are also increasingly choosing to attack companies through their supply chains. They do this, for example, by spoofing emails from a supplier, which immediately gives them access to that supplier’s entire network.  

Conclusion: Be aware of the biggest cyber threats right now

Over the past year, therefore, we haven’t really seen the emergence of new forms of cybercrime. Instead, existing threats have grown more severe due to new techniques and the refinement of existing ones. As a result, attacks are harder to detect, and threats are also more difficult to identify. Given the rapid changes in the field of cybercrime, it is important for every company to stay informed about current threats and take appropriate measures. You can never be too careful when it comes to today’s biggest cyber threats! 

Warning from the AP 

In its “Government Sector Policy,” the Dutch Data Protection Authority (AP) highlights this risk currently faced by government agencies. This risk involves not only the danger of being overly dependent on a service provider, but also all developments taking place within the government regarding privacy. To the public, it often seems that government agencies are still struggling to comply with privacy legislation. They are occasionally reprimanded by the AP for this. One of the concerns is that when the AP discovers vulnerabilities in government agencies’ systems, it often takes too long to address them. Reasons for this include outdated IT systems, a lack of knowledge, insufficient prioritization, or even a combination of all these factors. As a result, it sometimes takes far too long for data breaches or similar issues to be resolved.  

The government lacks a great deal of knowledge  

The biggest problem, therefore, is actually a significant knowledge gap within government agencies. As a result, it takes too long for outdated systems to be replaced and for problems to be resolved. Knowledge of privacy law is also often insufficient, particularly among executives. When GDPR violations occur, they are often the result of a lack of knowledge. The Dutch Data Protection Authority (AP) recently expressed concerns about GDPR compliance at the Tax and Customs Administration. For this reason, the authority will be scrutinizing this agency closely in the coming period.  

The Impact of Generative AI on GDPR Compliance 

Unfortunately, there are still many government agencies that believe they don’t need to fully understand privacy issues. The Dutch Data Protection Authority (AP) is now deeply concerned about the impact generative AI will have on government compliance with the GDPR. Many municipalities have already indicated that they intend to experiment with this technology, but this could have significant consequences—especially since many municipalities fail to conduct proper research before proceeding with such experiments.  

The hype surrounding artificial intelligence  

Many tech companies currently claim that artificial intelligence will eventually surpass the human brain and be capable of doing everything we cannot. Ask Google, OpenAI, or any other tech company deeply involved in AI, and they will tell you that it is inevitable that this technology will one day be smarter than we are. Many people have even expressed concerns about the development of this technology and what it could be used for, including Elon Musk. As a result, most people are convinced that technology will one day become smarter than humans.

AI will never be smarter than humans  

According to scientists at Radboud University, that is certainly not the case. They suspect that the current hype surrounding AI is leading to misunderstandings about what is and isn’t possible with this new technology. Their new publication, titled “Reclaiming AI as a Theoretical Tool for Cognitive Science,” explains why claims about artificial intelligence are exaggerated. Their findings show that there will never be enough computing power to create “artificial general intelligence” that delivers the same cognitive performance as the human brain. In addition, the article explains why pursuing this goal is a futile endeavor and a waste of energy resources and raw materials. After all, some of these are already scarce at the moment!  

Collaboration among various universities

The publication is a collaboration between several universities, including Radboud University, Aarhus University, the University of Amsterdam, the University of Bristol, and Memorial University of Newfoundland. All researchers who contributed to the publication are experts in the fields of cognitive science, neuroscience, computer science, and philosophy. People often fail to realize that cognitive science is crucial for understanding claims about the capabilities of AI. People tend to overestimate what computers can do and underestimate what our own brains are capable of. According to the researchers, it is important for the general public to gain more knowledge about AI. Currently, everyone believes the claims made by major tech companies, but that is not a good thing. The goal of the universities is to build a better understanding of AI systems so that people can continue to view the tech industry with a critical eye.  

How to implement the first phase of the AI Act 

To help you get started with preparations for the first phase of the AI Act, we’ve outlined a brief step-by-step plan below: 

• Step 1: Make an inventory of all the AI your business uses. In some cases, you might not even realize that you’re using a program that involves artificial intelligence. So be sure to look into this thoroughly. For example, AI might be part of the software you use, such as a CMS system.  
• Step 2: What risk category does the artificial intelligence your company uses fall into ? To determine this, you can consult the European database, which lists all AI systems classified as high-risk. If you’re unsure, you can also ask the supplier of the software you use for assistance! 
• Step 3: You now know which risk category each type of AI you use falls into, so you can immediately determine how you are and are not permitted to use artificial intelligence. Don’t just focus on the first phase; consider the subsequent phases as well. This way, you’ll be well prepared if you undergo an audit. The first phase of the AI Act applies only to the highest risk category.  
• Step 4: Make sure you only use AI in ways permitted under the new AI Act to avoid fines and other penalties! 

What types of AI fall into the "unacceptable risk" category?  

To properly implement the first phase of the AI Act, it is, of course, important to know which types of AI fall into the category of unacceptable risk. Artificial intelligence falls into the highest risk group if it poses a direct threat to citizens. Consider, for example, things like social scoring, manipulating or misleading people—such as by using someone’s voice—biometric categorization, and predicting criminal behavior. If your company uses an AI application in any way that does any of these things, stop using that application. Or see if you can use the application in a way that is permitted.  

What is the best way to phase out prohibited forms of AI?  

If you discover that you are using certain types of AI that will be prohibited under the AI Act as of February 1, 2025, you will, of course, need to phase them out. This usually doesn’t happen overnight. There are a number of strategies you can use to do this: 

• Stop using it: Stop using the AI application.  
• Find a good alternative: There may be an alternative to the AI application that essentially does the same thing without using a prohibited form of AI. For example, if you have a newsletter program that uses social scoring, replace it with A/B testing! 
• Replace prohibited AI with permitted AI: If your current AI uses some form of social scoring, you can choose to replace it with software that, for example, only considers certain characteristics of anonymous groups—such as age groups and geographic location.  
• Replace the AI with human employees: Finally , you can choose to discontinue the AI application and have human employees take over the work. Perhaps you can also work within the same software without AI and have a person take over the AI’s tasks? It might take a little more time, but you won’t risk incurring hefty fines! 

Conclusion  

There are several ways you can properly prepare your business for the first phase of the AI Act, which takes effect on February 1, 2025. Whether you choose to discontinue your AI applications or look for alternatives, we recommend that you start the process early. It may still feel far off, but phasing out certain applications and work processes can take a lot of time. Before you know it, it’ll be February 2025 😉  

1. Electronic health records and data analysis  

Electronic health records have been in use in the healthcare sector for quite some time now, but they are becoming increasingly efficient and sophisticated. A health record contains detailed information about a person’s medical history, such as laboratory results, past prescriptions, vaccinations, and so on. Thanks to fiber optics, this information can be transmitted quickly and securely between various medical facilities and healthcare providers within the healthcare sector. After all, this is highly sensitive information, so the connection must be as secure as possible. Finally, fiber optics enables the generation of valuable insights through data analysis and the use of AI.  

2. Fiber optics in healthcare make telemedicine possible

The use of fiber optics in healthcare is making it increasingly feasible to offer telemedicine and remote consultations. Doctors can use secure and high-speed fiber-optic networks to provide remote consultations to patients. Today, diagnosis, treatment, and monitoring can all be done remotely, which is, of course, ideal for people who have difficulty getting to the hospital, such as the elderly. Thanks to the advanced encryption technology and security protocols in a fiber-optic network, patients’ sensitive data is secure. Currently, efforts are even underway to enable doctors to perform surgeries remotely using robotics! 

3. Make faster and more accurate diagnoses  

The modern technologies that doctors use to make a diagnosis generate a large volume of data. This data must be transferred quickly and securely so that test results are available sooner and doctors can make more accurate diagnoses. Thanks to the high speeds offered by fiber optics, specialists can exchange data and results more quickly, leading to earlier diagnoses and more efficient and effective treatments. The sooner a condition is addressed, the better it can often be treated. Fiber optics in healthcare therefore also offers better prospects for patients.

Conclusion  

Fiber optics are therefore crucial to the healthcare sector. They enable doctors and specialists to communicate more quickly, facilitate faster diagnoses, ensure that sensitive data remains confidential, and allow doctors to provide remote treatments and consultations. Technological advancements in healthcare are currently progressing at a rapid pace, so we expect fiber optics to become even more important in this field!  

Artificial Intelligence and Power Consumption  

Behind all existing AI models are data centers that consume enormous amounts of electricity. After all, artificial intelligence requires a great deal of computing power, and generating that power demands a lot of energy. Data centers use about 10 to 50 times as much energy per floor as an average commercial building . A great deal of research has now been conducted on the energy consumption and climate impact of artificial intelligence. For example, a study by the University of Massachusetts shows that training just one AI model results in more than 283,000 kilograms of CO2. Unfortunately, it is difficult to accurately calculate the environmental impact of artificial intelligence, as many tech companies are not transparent about their energy consumption and CO2 emissions.  

Artificial intelligence can also have a positive impact on the climate! 

So far, we’ve only discussed the negative impact of AI on the climate, but there are also many ways in which AI models can actually contribute to initiatives that have a positive impact on the environment. The Green AI movement has recently emerged, and its goal is to develop sustainable and environmentally friendly algorithms. After all, artificial intelligence can help us better understand climate change and propose solutions to address it. Additionally, we can use AI to better predict natural disasters, allowing people to evacuate in time. Currently, artificial intelligence is already being used for a number of green purposes:  

• Combating illegal deforestation: The WWF developed an AI model called Forest Foresight. They use this model to stop illegal deforestation before it happens, using satellite imagery and other tools.  
• Monitoring biodiversity: Scientists have combined AI technology with drones and satellite imagery to monitor biodiversity. This allows them to detect changes more quickly and take timely action when necessary. Diseases among wild animals can also be detected more quickly and easily in this way.  
• Water purification and reuse: AI can be used to monitor water quality more effectively and treat the water in a timely manner. This allows for quicker detection of chemicals or other contaminants in the water, enabling immediate additional purification.  
• Reducing Waste: Food and water waste have a significant impact on the climate. A lot is already being done to combat food waste, but with the help of AI, we can take this a step further. Consider, for example, using dynamic pricing for food based on the expiration date. In addition, AI can make predictions, allowing supermarkets to better align their purchasing with consumer behavior.  

These are just a few examples of all the positive ways we can use artificial intelligence in the field of sustainability!

Conclusion  

At present, the negative impact of artificial intelligence is still quite evident, but this is beginning to change. Increasing attention is being paid to energy efficiency and sustainability in the construction of data centers and the development of AI models. In addition, there are also many positive ways in which artificial intelligence benefits the environment and the climate. There is a growing focus on developing eco-friendly algorithms that can help achieve sustainability goals. Currently, there are already AI models that are doing good things for the environment, such as helping to reduce waste and monitor biodiversity.

The use of AI in the cultural sector

Artificial intelligence opens up a world of possibilities, including within the cultural sector. The heritage sector is already making extensive use of AI, for example to make handwritten letters searchable, for facial recognition in audiovisual material to make it easier to find specific footage, and to establish new connections between European archives. But AI can, of course, also be used for many purposes in the cultural sector:

• Adding value for audiences or organizations: AI can help make cultural offerings more accessible to the public. This can be achieved, for example, through subtitles or automatic translations. Organizations can use AI to accurately estimate visitor numbers and adjust their staffing levels accordingly, which can lead to significant cost savings.
• Automating and streamlining work processes: With artificial intelligence, an organization can automate many work processes, leading to cost savings and greater efficiency. Examples include automatically translating flyers, editing videos and photos, and answering customer questions via a chatbot. Many cultural institutions are understaffed and need to watch their costs, so this would be a great solution!
• Introducing new products: Artificial intelligence is a valuable tool for creating new products. Creators can use it, for example, as inspiration when composing new music, digitally restoring a painting, or identifying new connections within their own collection to generate fresh content.
• Enhancing the audience experience: The cultural sector can use AI to better serve its audiences, leading to a more engaging experience. Examples include personalized digital interactive tours and guided tours using apps, as well as personalized offers on cultural institutions’ platforms.

What negative impact does AI have on cultural development?

We’ve now highlighted many of the benefits that artificial intelligence brings to the cultural sector, but there are, of course, a number of challenges as well. For instance, the quality of AI output is sometimes still questionable, especially since we often don’t know exactly where the information comes from and whether it’s accurate. In addition, creators need to be mindful of copyright, even if you’re using an AI sample solely as inspiration. After all, AI can extract information from a work that is protected by copyright. And the biggest challenge we currently face with the use of artificial intelligence is that it often operates based on biases.

AI and Bias

Ultimately, its use can therefore reinforce certain biases—an effect we obviously do not want from AI, as it often hinders cultural development. For example, many generative AI tools have an American and European bias. This means that the content generated by the AI is often not representative of people from around the world. The way AI is trained determines the results it produces. If only information containing biases about a certain race or gender is used, there is a high chance that the AI will produce discriminatory results. This is one of the reasons companies are still hesitant to use AI in their recruitment process. Fortunately, steps are already being taken to address this challenge, such as training AI with more diverse datasets. So in the future, we can make artificial intelligence bias-free too!

What does the regulation of AI entail?  

The AI Act aims to ensure that “certain AI applications that threaten citizens’ rights are banned.” The agreement among European Member States states that AI systems will be classified into different risk profiles. Systems falling into the highest risk category will be banned. However, even lower-risk systems must meet strict requirements to be approved by the Parliament. Consider, for example, algorithms used to screen resumes. These may be used, but a company must ensure that the system will not discriminate on the basis of race, age, gender, and so on.

What does AI regulation mean in practice?  

Among other things, this means that companies are prohibited from developing biometric systems based on “sensitive characteristics.” They are also prohibited from scraping faces from other platforms for the purpose of creating a facial recognition database. AI that can manipulate human behavior or exploit people’s vulnerabilities is also prohibited. It is also prohibited to create systems that recognize emotions in schools or workplaces, assign social scores, or perform predictive policing. The police themselves will also be subject to clear guidelines regarding the use of artificial intelligence. They may not use biometric identification systems, except in special cases, but for such cases, they must submit a detailed explanation. Examples include cases such as a missing person or a terrorist threat. Finally, the AI Act stipulates that images and videos created using AI must also be clearly labeled as “AI content” so that users know they are not real. This is, of course, to combat deepfakes and similar content.  

When will the new AI law take effect?  

The new AI regulations will be implemented in phases, not all at once. This means it will take some time. The Parliament will not publish the final legislation until May, and it will take another six months after that for the ban on unacceptable AI systems to take effect. The rules for generative AI systems, such as ChatGPT and Midjourney, will not take effect until 2025. Finally, the last set of rules will take effect in 2026. Systems with a high-risk profile will then be required to undergo a human rights assessment to ensure that the system does not discriminate or apply biases. Companies that violate the AI law could face extremely high fines, which can reach up to 35 million euros.