Analysis of the Impact of Regulations on Cybersecurity Threats
1
Faculty of Mechatronics, Warsaw University of Technology, Poland
Submission date: 2025-11-30
Acceptance date: 2025-12-13
Publication date: 2025-12-23
Corresponding author
Tomasz Zawadzki
Faculty of Mechatronics, Warsaw University of Technology, ul. św. Andrzeja Boboli 8, 02-525, Warsaw, Poland
Faculty of Mechatronics, Warsaw University of Technology, ul. św. Andrzeja Boboli 8, 02-525, Warsaw, Poland
Cybersecurity and Law 2025;14(2):93-109
KEYWORDS
TOPICS
ABSTRACT
Objectives:
Over the past 20 years, the number of various legal acts, standards, and guidelines related to cybersecurity has increased significantly. The expected outcome of these measures was to enhance organizational resilience and reduce the number of incidents. Therefore, the aim of the study described in this article was to review existing regulations and make a preliminary assessment of whether their growing number translates into a decrease in recorded incidents.
Methods:
The analysis covered data from 2000 to 2025 obtained from open sources and focused on identifying correlations between the number of regulations and the number of incidents. The research methods involved reviewing existing legal acts, standards, and regulations in the field of cybersecurity published worldwide by government bodies, standardization organizations, and technology corporations.
Results:
Based on the collected data, final results were developed showing the correlation between the number of regulations and the number of recorded incidents. Subsequently, an attempt was made to analyze the relationships between the examined areas to explain the obtained results
Conclusions:
Conclusions stated that he research should be significantly deepened to explain the nature of the discovered correlation between introduced regulations and the the number of incidents . It was also concluded that regulations are essential, but by themselves may not have a substantial impact on reducing the number of incidents. Furthermore, it is worth considering whether the number of incidents alone is an appropriate metric for assessing the effectiveness of implemented regulations
Over the past 20 years, the number of various legal acts, standards, and guidelines related to cybersecurity has increased significantly. The expected outcome of these measures was to enhance organizational resilience and reduce the number of incidents. Therefore, the aim of the study described in this article was to review existing regulations and make a preliminary assessment of whether their growing number translates into a decrease in recorded incidents.
Methods:
The analysis covered data from 2000 to 2025 obtained from open sources and focused on identifying correlations between the number of regulations and the number of incidents. The research methods involved reviewing existing legal acts, standards, and regulations in the field of cybersecurity published worldwide by government bodies, standardization organizations, and technology corporations.
Results:
Based on the collected data, final results were developed showing the correlation between the number of regulations and the number of recorded incidents. Subsequently, an attempt was made to analyze the relationships between the examined areas to explain the obtained results
Conclusions:
Conclusions stated that he research should be significantly deepened to explain the nature of the discovered correlation between introduced regulations and the the number of incidents . It was also concluded that regulations are essential, but by themselves may not have a substantial impact on reducing the number of incidents. Furthermore, it is worth considering whether the number of incidents alone is an appropriate metric for assessing the effectiveness of implemented regulations
Share
RELATED ARTICLE
| ISSN: | 2658-1493 |
We process personal data collected when visiting the website. The function of obtaining information about users and their behavior is carried out by voluntarily entered information in forms and saving cookies in end devices. Data, including cookies, are used to provide services, improve the user experience and to analyze the traffic in accordance with the Privacy policy. Data are also collected and processed by Google Analytics tool (more).
You can change cookies settings in your browser. Restricted use of cookies in the browser configuration may affect some functionalities of the website.
You can change cookies settings in your browser. Restricted use of cookies in the browser configuration may affect some functionalities of the website.
