Italy’s cybersecurity crisis deepens as 9,250 attacks expose critical flaws in 2025
Italy faced a sharp rise in cyber threats during 2025, with critical sectors under relentless attack. The Postal and Cybersecurity Police recorded 9,250 incidents, exposing vulnerabilities in infrastructure, businesses, and public services. Authorities responded by charging 169 suspects and issuing thousands of alerts to mitigate the damage.
The healthcare sector remained a prime target due to the high value of medical data and the severe consequences of breaches. Hackers also focused on energy providers, local governments, and universities. In one wave of attacks, phishing campaigns and ransomware struck municipal administrations across multiple regions. Large industrial firms in northern Italy suffered supply chain disruptions and data theft, while research institutes faced espionage attempts targeting sensitive projects.
Attackers used sophisticated methods, including social engineering, custom malware, and zero-day exploits. Distributed Denial of Service (DDoS) attacks grew more powerful and were deployed strategically to overwhelm defences. Many incidents involved multi-stage assaults, making detection and response harder for security teams.
Of the 942 cyber incidents targeting essential services, 535 were classified as particularly severe. Private companies and organisations reported 275 serious breaches, often linked to state-sponsored groups. The National Cybercrime Center for Critical Infrastructure Protection (CNAIPIC) issued over 49,000 alerts to warn potential victims. Despite these efforts, attribution remained difficult due to obfuscation techniques, false flags, and anonymisation tactics.
Investigations pointed to advanced persistent threat (APT) actors, with suspected ties to Russia, China, Iran, and North Korea. Supply chains and smaller enterprises proved especially vulnerable, as attackers exploited weaker links in production processes. Authorities handled 47 international cooperation requests to track down those responsible.
The scale of cyber threats in 2025 underscored the persistent risks to Italy’s digital infrastructure. With nearly 10,000 recorded attacks and hundreds of severe breaches, businesses, governments, and citizens faced ongoing exposure. Law enforcement and cybersecurity agencies continued to strengthen defences, but the evolving tactics of attackers kept pressure on critical systems.
