Germany has passed legislation ordering that more than 2,000 essential service providers implement new minimum information security standards or face penalties if they fail to do so within two years.
The law will affect institutions listed as "critical infrastructure,” such as transportation, health, water utilities, telecommunications providers, as well as finance and insurance firms. It gives companies two years to introduce cyber security measures or face fines of up to $111,000, reported Reuters.