Security & Defense

#32026R0589Council Implementing Regulation (EU) 2026/589 of 16 March 2026 implementing Regulation (EU) 2019/796 concerning restrictive measures against cyber-attacks threatening the Union or its Member States

🇪🇺European Union··Other·High Impact·View source ↗

AI-generated summary for informational purposes only. Not legal advice. See the original source for the authoritative text.

🇬🇧 English

This regulation adds two Chinese individuals (Chen Cheng and Wu Haibo) and three entities (Integrity Technology Group, Emennet Pasargad, and Anxun Information Technology Co. Ltd / i-Soon) to the EU sanctions list under the 2019 cyber-attack sanctions regime. The listed persons and companies are sanctioned for their roles in 'hacking-for-hire' services and providing tools used in cyber operations targeting EU critical infrastructure, IoT devices, and government systems. Specifically, Anxun/i-Soon accessed and sold classified information from Member States, while Integrity Technology Group supplied technology used by APT Flax Typhoon to compromise over 65,600 IoT devices across six Member States between 2022-2023. Iranian company Emennet Pasargad conducted attacks on Sweden, France (including Charlie Hebdo and Paris Olympics), and interfered in the 2020 US elections.

AI-generated summary. May contain errors. Refer to official sources for legal decisions.

Key Changes

  • Adds Chen Cheng (DOB 20.10.1984, Yancheng, China) and Wu Haibo to Annex I as natural persons subject to asset freeze and travel ban
  • Designates Anxun Information Technology Co. Ltd (i-Soon) for providing hacking-for-hire services targeting EU Member States
  • Lists Integrity Technology Group for supplying technology used by APT Flax Typhoon to compromise 65,600+ IoT devices in 6 Member States (2022-2023)

+ 3 more changes with Pro

Obligations

What this law requires

high

Freeze all funds and economic resources belonging to Chen Cheng (DOB: 20.10.1984, also known as Jesse Chen, lengmo, l3n6m0) immediately upon this regulation's entry into force

All EU Member States, financial institutions, and persons subject to EU jurisdiction
prohibition
high

Freeze all funds and economic resources belonging to Wu Haibo (also known as shutdown, shutd0wn) immediately upon this regulation's entry into force

All EU Member States, financial institutions, and persons subject to EU jurisdiction
prohibition
high

Freeze all funds and economic resources belonging to Integrity Technology Group (Beijing Haidian District, China; USCC: 91110108562135265P) and deny access to EU financial markets and banking services

All EU Member States, financial institutions, and persons subject to EU jurisdiction
prohibition
high

Freeze all funds and economic resources belonging to Emennet Pasargad (Tehran, Iran; Registration number: 554267) and all its aliases (Anzu Team, Holy Souls, Aria Sepehr Ayandehsazan, Haywire Kitten)

All EU Member States, financial institutions, and persons subject to EU jurisdiction
prohibition
high

Freeze all funds and economic resources belonging to Anxun Information Technology Co. Ltd./i-Soon (PRC) and deny access to EU financial markets and banking services

All EU Member States, financial institutions, and persons subject to EU jurisdiction
prohibition

Affected Parties

Chinese cybersecurity companiesIranian cyber actors+4 more…

Tags

cyber sanctions,EU sanctions,APT groups

More from European Union

Notifications under Article 42 of the Schengen Borders Code on Document Obligations

Penalties for Unauthorized Crossing of External Borders in Croatia

Requirement for Third-Country Nationals to Register Accommodation in Croatia