EU Imposes Sanctions on Chinese and Iranian Entities Over Cyberattacks
The EU Council has sanctioned two Chinese companies, one Iranian firm, and two individuals for their involvement in cyberattacks targeting member states and international partners. The measures, announced under the EU’s cyber sanctions regime, include asset freezes, funding restrictions, and travel bans for the listed parties.
Among the sanctioned entities, a Chinese company provided hacking tools that compromised over 65,000 devices across six EU member states between 2022 and 2023. Another Chinese firm offered hacking services targeting critical infrastructure in the EU and other nations. Meanwhile, the Iranian company accessed a French subscriber database, sold the stolen data on the dark web, and hijacked advertising billboards to spread disinformation during the 2024 Paris Olympics. It also breached a Swedish SMS service.
With these additions, the EU’s cyber sanctions now apply to 19 individuals and seven entities. The Council reaffirmed its commitment to collaborating with global partners to uphold a secure and stable cyberspace.
Source: https://www.helpnetsecurity.com/2026/03/17/eu-sanctions-china-iran-cyberattacks/
European Union Agency for Cybersecurity (ENISA) cybersecurity rating report: https://www.rankiteo.com/company/european-union-agency-for-cybersecurity-enisa
"id": "EUR1773757760",
"linkid": "european-union-agency-for-cybersecurity-enisa",
"type": "Cyber Attack",
"date": "1/2022",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of geographical region"{'affected_entities': [{'industry': 'Telecommunications',
'location': 'France',
'name': 'Unnamed French Subscriber Database',
'type': 'Database'},
{'industry': 'Telecommunications',
'location': 'Sweden',
'name': 'Unnamed Swedish SMS Service',
'type': 'Service Provider'},
{'industry': 'Multiple',
'location': 'EU and other nations',
'name': 'Critical Infrastructure (EU and other '
'nations)',
'type': 'Infrastructure'}],
'attack_vector': ['Hacking Tools',
'Unauthorized Access',
'Exploitation of Vulnerabilities'],
'data_breach': {'data_exfiltration': 'Data sold on dark web',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High (Personally Identifiable '
'Information)',
'type_of_data_compromised': ['Subscriber Data', 'SMS Data']},
'description': 'The EU Council has sanctioned two Chinese companies, one '
'Iranian firm, and two individuals for their involvement in '
'cyberattacks targeting member states and international '
'partners. The measures include asset freezes, funding '
'restrictions, and travel bans. The attacks involved hacking '
'tools, critical infrastructure targeting, data breaches, and '
'disinformation campaigns.',
'impact': {'brand_reputation_impact': 'Disinformation during Paris Olympics',
'data_compromised': 'Over 65,000 devices compromised; French '
'subscriber database breached; Swedish SMS '
'service breached',
'identity_theft_risk': 'High (data sold on dark web)',
'systems_affected': ['Critical Infrastructure',
'Advertising Billboards',
'SMS Services']},
'initial_access_broker': {'data_sold_on_dark_web': 'Yes (French subscriber '
'data)',
'high_value_targets': 'Critical Infrastructure, '
'Subscriber Databases'},
'investigation_status': 'Ongoing',
'motivation': ['Espionage', 'Financial Gain', 'Disinformation'],
'references': [{'source': 'EU Council'}],
'regulatory_compliance': {'legal_actions': 'Sanctions imposed under EU cyber '
'sanctions regime'},
'response': {'containment_measures': 'Sanctions (asset freezes, funding '
'restrictions, travel bans)',
'law_enforcement_notified': 'EU Council'},
'threat_actor': ['Chinese State-Sponsored Actors',
'Iranian State-Sponsored Actors'],
'title': 'EU Imposes Sanctions on Chinese and Iranian Entities Over '
'Cyberattacks',
'type': ['Cyber Espionage', 'Data Breach', 'Disinformation Campaign']}