Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

ENISA phishing-led intrusion and DDoS trends across EU organizations

Target Trend
First reported
Last updated
Happening score
H score 16
1 unique sources, 1 articles

Summary

Hide ▲

ENISA's Threat Landscape 2025 shows phishing remained the dominant initial-access path across EU organizations, keeping credential theft and follow-on compromise at the center of risk. The same period also saw vulnerability exploitation as a major secondary vector and DDoS as the dominant attack-volume pattern. That matters because most intrusions ended in follow-up malware deployment, increasing the chance that a single entry point turns into broader disruption. The trend also underscores persistent pressure on public administration and other high-value sectors.

Related Happenings

Rising DDoS and hacktivist pressure on EU public administration

Target Trend
First: 06.11.2025 14:00 Last: 06.11.2025 14:00 Sources 1

About this happening: **EU public administration** faces a heavily skewed incident mix, with **DDoS** and **hacktivist groups** dominating reported cyber events in **2024**. The pattern matters because...

Open Happening

Timeline

  1. 02.10.2025 11:45 2 articles · 7mo ago

    ENISA threat landscape findings on EU intrusion trends

    Technical Analysis Update

    ENISA's Threat Landscape 2025 identifies phishing as the dominant initial-access vector against EU organizations, accounting for 60% of observed intrusions across 4,875 incidents from July 1 2024 to June 30 2025, with vulnerability exploitation at 21%, botnets at 10%, malicious applications at 8%, and 68% of intrusions leading to follow-up malware deployment; DDoS made up 77% of reported incidents, and public administration was the most targeted sector at 38%.

    Show sources
    Open in new tab