Cyber Resilience

ENISA Threat Landscape

The EU’s cybersecurity agency publishes an annual Threat Landscape report ranking the threats it observed across the Union. The figures below are transcribed by hand from the published report (PDF-only) and re-published here under CC BY 4.0 with attribution to ENISA.

Reporting window: Jul 2024 – Jun 2025 · ENISA-counted incidents: 4,875 · Source: ENISA Threat Landscape 2025 (CC BY 4.0).

Top threats (2025)

RankThreatShare / basis
1DDoS / availability attacks
Driven by hacktivist activity (low individual impact, very high volume).
77%
2Ransomware
Most operationally disruptive category despite lower volume share.
impact
3Data breaches17%
4Phishing
% of incidents that began with phishing; not exclusive to one category.
60%
5Supply-chain compromise
6Exploited vulnerabilities

Most-targeted sectors

SectorShare of incidents
Public Administration63.1%
Transport12.0%
Finance11.7%

Notable threat actors

Year-over-year: figures for 2024 are still being transcribed from their source reports, so trend comparison will appear here once a second full year is available.