On 20 January 2026, the European Commission published two legislative proposals that together form a comprehensive overhaul of the EU’s cybersecurity framework.
Ensure EU Cyber Resilience Act compliance without slowing down AI-assisted development. Use SonarQube for automated AI code verification, SAST & SBOM generation. Secure your SDLC today.
Banking lobbyist AFME asking for a full carve out of Cyber Resilience Act
How the EU Cyber Resilience Act will impact Kubernetes, containers and cloud native supply chains ahead of the 2027 enforcement deadline.
Arrow and NXP announced a collaboration to help customers prepare for the EU Cyber Resilience Act.
Microchip Technology expands Trust Platform to help manufacturers meet EU Cyber Resilience Act security requirements.
/PRNewswire/ -- Nordic Semiconductor, a global leader in low-power wireless connectivity solutions, today announces a significant step in preparing customers...
Quectel ensures EU Cyber Resilience Act compliance by leveraging third-party security validation with Finite State, offering audit-ready modules and detailed documentation.
Is European cyber deterrence possible? Europe faces a perfect storm of increased cyberattacks and hybrid warfare, a resurgent Russia, and waning U.S. engagement. To counter these challenges, a new European Cyber Operations Group is urgently needed.
Arrow Electronics is collaborating with NXP Semiconductors to support customers preparing for the EU Cyber Resilience Act (CRA), which sets mandatory
The integration of AI into cybersecurity systems is profoundly transforming how threats are detected, mitigated and prevented.
NUREMBERG, Germany, March 09, 2026--Quectel Wireless Solutions, a global end-to-end IoT solutions provider, today reiterates that its cybersecurity program for its module portfolio supports compliance with the European Union’s Cyber Resilience Act (CRA), ahead of the 11 September 2026 deadline. Quectel’s best practice product security ensures customers can meet the CRA’s mandatory requirements for security by design, SBOM availability and vulnerability disclosure and incident reporting, reinforc
Quectel Wireless Solutions, a global end-to-end IoT solutions provider, today reiterates that its cybersecurity program for its module portfolio supports com...
European Commission opens consultation on draft guidance to help manufacturers and developers comply with CRA.
The Document Foundation criticises the European Commission for requiring feedback in Microsoft’s XLSX format for a Cyber Resilience Act consultation, warning
The European Commission has released draft guidance to help companies, especially microenterprises, small, and medium-sized enterprises, comply with the Cyber Resilience Act (CRA).
: LibreOffice steward says Commish undermines its own standards by asking for feedback via Excel spreadsheet
On March 3, 2026, the European Commission published draft guidance on the Cyber Resilience Act (CRA), which is open to public consultation until March 31, 2026. The CRA sets strict cybersecurity requ...
With only months to go until the first set of obligations under the EU Cyber Resilience Act (“CRA”) become applicable, the Commission has published on 3 March 2026 its first draft guidance intended to assist economic operators and market surveillance authorities in applying the CRA. The CRA, as part of the broader EU product law framework, establishes mandatory cybersecurity requirements that will significantly affect most hardware and software products made available on the EU market. CRA implementation projects reveal some legal uncertainty on key questions on the CRA's scope and key obligations. The published draft guidance based on Art. 26 CRA provides important additional clarification for economic operators and will, once finalized, serve as an essential resource on the interpretation of the CRA. This article provides an overview of the draft guidance.
MLex Summary: The European Commission has opened a consultation on draft guidance aimed at helping companies comply with the obligations of the Cyber Resilience Act, as it steps up preparations ahead of the law’s phased application. The draft guidance clarifies the scope of the rules, including provisions on remote data processing solutions, free and open-source software and product support periods, and addresses how the CRA interacts with other EU legislation. The feedback deadline falls at the end of March.
BearingPoint's SBOM Management Services and CRA Compliance Services offerings, increases supply chain transparency while meeting regulation requirements
Essential Privacy and Regulatory Research at Your Fingertips. Find everything you need to stay up-to-date on evolving privacy & security regulations around the world
Kudelski Labs will be attending embedded world Germany in Hall 3A, Booth 3A-334 showcasing its latest security solutions with live demonstrations. The demos will focus on how semiconductor and device manufacturers can deploy secure and future-ready products at scale while meeting emerging requirements under the EU Cyber Resilience Act.
On Monday, March 2, 2026, wolfSSL Inc. announced the transition of its entire embedded security and cryptographic portfolio to full compliance with the European Union’s Cyber Resilience Act (CRA). The […]
Cybersecurity law is no longer treated as a purely technical compliance exercise, but increasingly as a matter of enterprise risk management and corporate governance.