Data breaches cost the EC at least €10 billion and the annual costs of malicious attempts to disrupt traffic on the internet are estimated to be at least €65 billion, according to an impact assessment report. Ransomware cost the global economy €5.5 trillion in 2021, according to the Joint Research Centre report (2020) Cybersecurity – Our Digital Anchor, a European perspective. The EU Cybersecurity Strategy builds on the EU's Shaping Europe's Digital Future and the EU Security Union Strategy and leans on a number of legislative acts, actions and initiatives the EU has implemented to strengthen cybersecurity capacities and ensure a more cyber-resilient Europe.
The new Cyber Resilience Act will complement the EU cybersecurity framework: the Directive on the security of Network and Information Systems (NIS Directive), the Directive on measures for a high common level of cybersecurity across the Union (NIS 2 Directive), which was recently agreed by the European Parliament and the Council, and the EU Cybersecurity Act.