The number of attacks against information systems is increasing year by year. In order to counteract this tendency, and for the current legal situation with respect to computer and Internet crime in EU Member States is considered insufficient, the EU enacted the Directive 2013/40/EU on attacks against information systems. The present work deals with the content of this directive, and its impact on the Austrian computer penal law. The first part of this paper gives a brief outline of the development of the Austrian computer penal law. The second part is devoted to the contents of the directive, whereas individual items (article 2 to article 14) are presented and analyzed. The main part of this thesis presents the chapter "Effects of Directive on the Austrian computer penal law". To begin with, the corresponding substantive criminal offenses of the directive according to Austrian provisions with respect to their objective and subjective elements are discussed. Further on, the differences between the articles of the directive and Austrian provisions are presented, demonstrating how the Austrian law must be adapted to the provisions of the directive. In this particular section, the Convention on Cybercrime which has been enacted by the Council of Europe, is taken into account and compared with the directive. The final part is a conclusive, critical analysis of the directive.