The European Parliament has made headway into the development of cybersecurity rules its member states should follow. Under the first set of regulations it has laid down, critical service companies in all 28 member states will have to make sure they're using a system robust enough to fend off cyberattacks. By "critical service companies," we mean those that fall under any of these six categories: energy, transport, banking, financial market, health and water supply. Each member state will have to list businesses that can be identified as critical service companies under a category. Any company that makes the cut will have to be able to quickly report security breaches to authorities.