Cybeats Positioned to Benefit from New EU Regulation; €15M Fines Under Cyber Resilience Act Drive Urgency for SBOM Compliance

Rhea-AI Summary

Cybeats Technologies Corp. is positioned to benefit from the new EU Cyber Resilience Act, which enforces SBOM compliance with fines of up to €15 million or 2.5% of gross sales. The company's SBOM Studio offers a leading interface for managing software assets, aligning with increasing regulatory requirements. CEO Justin Leger emphasizes the importance of proactive cybersecurity measures. The Act covers all products with software connections, including IoT devices. The FDA also mandates SBOM for medical device cybersecurity, highlighting the importance of solutions like SBOM Studio.

TORONTO, April 17, 2024 /PRNewswire/ - Cybeats Technologies Corp. ("Cybeats'' or the "Company") (CSE: CYBT) (OTCQB: CYBCF), a company offering industry-leading cybersecurity technology, is pleased to provide an update on new cybersecurity regulation by the European Union's ("EU") Cyber Resilience Act ("CRA" or "Act"), which positions Cybeats to benefit from the enforcement of SBOM requirements.

The new Act puts forth that failing to comply with certain Software Bill of Materials ("SBOM") reporting could lead to a €15 million administrative fine or 2.5% of an organization's gross sales, whichever is higher.¹ This enhanced oversight by the EU fortifies the go-to-market thesis for Cybeats' Product, SBOM Studio, and helps drive further commercial expansion through the G7.² SBOM Studio provides customers with an industry-leading interface to manage their software assets, and helps facilitate compliance with the growing oversight and regulatory requirements for SBOM. 

"Governments and regulators are no longer standing by as Fortune 500 organizations fail to choose a proactive approach to their software supply chain and cybersecurity posture that aims to protect devices, users and national security interests. As seen with FDA mandates on SBOM, the EU and ROW are following suit with widespread SBOM oversight and severe penalties in some cases. Regulations on SBOM are here to stay," said Justin Leger, CEO, Cybeats. 

Companies that fail to comply with the CRA's vulnerability reporting, cyber incident reporting, or essential cybersecurity requirements could face administrative fines of up to €15 million or 2.5% of their gross sales, whichever is higher.³ Included in the CRA's requirements⁴:

Annex 1 (Part 2, Point 1) - Software Bill of Materials ("SBOM"): Manufacturers must identify and document product components and vulnerabilities, including…software bill of materials (SBOM)."

This CRA covers all products with software as well with a direct or indirect connection to a device or network, which includes standalone software as well as Internet of Things (IoT), operational technology, or other tangible devices, such as televisions, laptops, baby monitors, etc., for both enterprises and consumers.

FDA and Medical Device Security

The U.S. Food and Drug Administration's ("FDA") enhanced its regulation of medical device cybersecurity with its authority to approve or reject premarket submissions based on compliance with section 524B of the Federal Food, Drug, and Cosmetic Act ("FD&C Act").⁵ This section mandates that Medical Device Manufacturers ("MDM") provide a SBOM for their devices' commercial, open-source, and off-the-shelf software components. To proactively manage cybersecurity risks, MDMs must maintain an accurate inventory of device software components, develop vulnerability management and risk assessment processes, provide device patches, and maintain device change records. The FDA's Refuse-to-Accept ("RTA") authority emphasizes the growing significance of SBOM management solutions like SBOM Studio.

About Cybeats

Cybeats is a cybersecurity company providing SBOM management and software supply chain intelligence technology, helping organizations to manage risk, meet compliance requirements, and secure their software from procurement to development and operation. Our platform gives customers comprehensive visibility and transparency into their software supply chain, enabling them to improve operational efficiency and increase revenue. Cybeats. Software Made Certain. Website: https://cybeats.com 

SUBSCRIBE: For more information, or to subscribe to the Company's mail list, visit: https://www.cybeats.com/investors 

Forward-looking Information Cautionary Statement

Except for statements of historic fact, this news release contains certain "forward-looking information" within the meaning of applicable securities law. Forward-looking information is frequently characterized by words such as "plan", "expect", "project", "intend", "believe", "anticipate", "estimate" and other similar words, or statements that certain events or conditions "may" or "will" occur. Forward-looking statements are based on the opinions and estimates at the date the statements are made, and are subject to a variety of risks and uncertainties and other factors that could cause actual events or results to differ materially from those anticipated in the forward-looking statements including, but not limited to delays or uncertainties with regulatory approvals, including that of the CSE. There are uncertainties inherent in forward-looking information, including factors beyond the Company's control. There are no assurances that the commercialization plans for the products described in this news release will come into effect on the terms or time frame described herein. The Company undertakes no obligation to update forward-looking information if circumstances or management's estimates or opinions should change except as required by law. The reader is cautioned not to place undue reliance on forward-looking statements. Company filings are available at sedarplus.ca.

_________________________

1https://www.allenovery.com/en-gb/global/blogs/tech-talk/the-eu-cyber-resilience-act-proposal-what-you-need-to-know#:~:text=Non%2Dcompliance%20with%20the%20essential,on%20the%20type%20of%20violation.

2https://www.lexology.com/library/detail.aspx?g=33d0c6f6-350a-4d0c-9bf4-877b82d42db2#:~:text=Companies%20that%20fail%20to%20comply,53.3%5D.

3https://www.allenovery.com/en-gb/global/blogs/tech-talk/the-eu-cyber-resilience-act-proposal-what-you-need-to-know#:~:text=Non%2Dcompliance%20with%20the%20essential,on%20the%20type%20of%20violation.

4https://shorturl.at/jTUX5

5https://www.cybeats.com/news/fdas-enhanced-role-and-sbom-mandate-further-validates-market-for-cybeats-sbom-studio

 

View original content to download multimedia:https://www.prnewswire.com/news-releases/cybeats-positioned-to-benefit-from-new-eu-regulation-15m-fines-under-cyber-resilience-act-drive-urgency-for-sbom-compliance-302119548.html

SOURCE Cybeats Technologies Corp.

FAQ

What is the significance of the EU Cyber Resilience Act for Cybeats Technologies Corp.?

The EU Cyber Resilience Act enforces SBOM compliance with fines of up to €15 million or 2.5% of gross sales, benefiting Cybeats Technologies Corp.

What does Cybeats Technologies Corp.'s SBOM Studio offer?

SBOM Studio provides customers with a leading interface for managing software assets and ensuring compliance with regulatory requirements.

Why is proactive cybersecurity posture important according to CEO Justin Leger?

CEO Justin Leger emphasizes the importance of proactive cybersecurity measures to protect devices, users, and national security interests.

What products are covered under the EU Cyber Resilience Act?

The Act covers all products with software connections, including IoT devices, for both enterprises and consumers.

What does the FDA mandate for medical device cybersecurity?

The FDA mandates SBOM for medical device cybersecurity, requiring manufacturers to provide a list of software components and maintain vulnerability management processes.