Cyberattacks, Hit

Cyberattacks Hit 87% of German Firms as New EU Rules Bring Fines Up to €15 Million

Veröffentlicht: 13.07.2026 um 12:34 Uhr, Redaktion boerse-global.de

German firms face twin July-August 2026 deadlines for NIS-2 and EU AI Act compliance, with fines reaching millions. New digital tools emerge as cyberattacks hit 87% of companies.

EU Compliance Deadlines Loom: NIS-2 & AI Act Penalties Up to €15M
Cyberattacks Hit 87% of German Firms as New EU Rules Bring Fines Up to €15 Million Illustration mit AI erstellt übermittelt durch boerse-global.de

Businesses rushing to digitise safety and security compliance face twin deadlines in late July and early August, with penalties reaching into the millions.

Nearly nine out of ten German companies have suffered cyberattacks, according to fresh Bitkom data — 87 percent to be precise, with total damages estimated at almost €290 billion. In manufacturing, the figure is even more alarming: 73 percent of attacks target production systems directly. An ISACA representative warned that failing to protect production infrastructure is increasingly viewed as a breach of corporate duty of care.

Against that backdrop, a wave of European regulations is forcing businesses to act. On 31 July 2026, the registration period for the NIS?2 Directive ends for many companies. Non-compliance can trigger fines of up to €10 million or two percent of global annual turnover. The stakes are personal: under NIS?2, management bears individual liability for IT security lapses. Two days later, on 2 August 2026, new obligations under the EU AI Act take effect, with penalties as high as €15 million or three percent of revenue.

A DIHK survey shows that 35 percent of companies already use artificial intelligence; another 34 percent plan to. Among current users, 78 percent apply the technology to generate text, images or programming code.

A new tool for small?office risk assessments

On 11 July 2026, Easywork Italia S.r.l. launched the DVR Generator, a web application that produces hazard assessments for small offices in minutes — no external consultant required. The output is an editable Word document tailored to small business units. The tool reflects a growing market for low?threshold digital solutions as companies scramble to meet legal requirements without heavy staffing or cost outlays.

Advertisement

The growing complexity of compliance — from NIS?2 to occupational safety — means that systematic risk documentation is no longer optional. A free toolkit gives you 41 ready?to?use templates and checklists for everything from fire safety to lone working, so you can build a compliant framework in minutes. Download the free Risk Assessment Toolkit

Insurers embrace automated risk checks

The same day, Alte Leipziger introduced e?Risiko, a digital risk?assessment system for occupational disability insurance. It covers more than 7,500 medical conditions plus a wide range of occupational and leisure risks. A board member noted that around 70 percent of checks produce an immediate decision, sharply reducing processing times for both customers and brokers.

Linking legal domains: the new compliance imperative

Legal experts stress that companies can no longer treat occupational safety, IT security, data protection and labour law as separate silos. They point again to a landmark ruling by Germany’s Federal Labour Court (BAG) on 13 September 2022, which obliges employers to systematically record working hours. Integrating such requirements into digital management systems is becoming the central trend — and, for many mid?sized firms, the key to keeping compliance risks in check.

Disclaimer zu unseren Artikeln: Keine Anlageberatung, keine Kauf oder Verkaufsempfehlung. Angaben zu Kursen, Unternehmen und Märkten ohne Gewähr; Änderungen jederzeit möglich. Börsengeschäfte können zu hohen Verlusten führen. Unsere Beiträge werden ganz oder teilweise automatisiert mit Unterstützung von AI erstellt und geprüft.

en | boerse | 69759750 |