Loading...

News Flash

Hackers speak English: how most cyberattacks on Italy actually come from the USA

Forget Russia or China: the main cyber threats to Italian companies originate across the Atlantic

Global cybercrime

Table of contents

  • The Italian cyber landscape: record-breaking numbers
  • The real origin of the attacks: not who you’d expect
  • How they break in: the most dangerous files

The Italian cyber landscape: record-breaking numbers

Between July and December 2024, Italian companies suffered an average of 2,281 cyberattacks per week, well above the global average of 1,843. This alarming data comes from the annual Check Point report, a cyber security company with 30 years of experience, and was highlighted by Milano Finanza.

The three most affected sectors are:

  • Education, with more than double the global average of attacks
  • Government and Public Administration
  • Media and Communications

According to Cristiano Voschion, Check Point’s Country Manager for Italy, while AI and cloud computing have improved our lives, they’ve also empowered cybercriminals to strike harder and faster.

The real origin of the attacks: not who you’d expect

While headlines often point fingers at Russia or China, the Check Point report paints a different picture: 47% of cyberattacks targeting Italy in 2024 originated from the United States, followed by:

  • Italy itself (13%)
  • Germany (9%)

This surprising data suggests that many attackers exploit American infrastructure or are part of US-based cyber collectives, turning the USA into an unintentional cyber-hostile origin.

How they break in: the most dangerous files

Most cyber intrusions still rely on malicious emails, often disguised as legitimate communications, and typically contain:

  • Executable files (.exe): 61%
  • Infected PDFs: 30%
  • Tampered Excel spreadsheets: 9%

The real threat for 2025? Artificial intelligence.
Cybercriminals are expected to use AI to:

  • Create ultra-realistic phishing emails
  • Hijack business communications (BEC)
  • Bypass identity verification procedures
  • Automate large-scale attacks

Questions and answers

  1. How many cyberattacks does a typical Italian company face weekly?
    About 2,281, based on Check Point’s data cited by Milano Finanza.
  2. Where do most of these attacks come from?
    47% originate in the USA, followed by Italy (13%) and Germany (9%).
  3. Which sectors are the most vulnerable?
    Education, Government, and Media are top targets.
  4. What types of files are used in cyberattacks?
    Mostly .exe, PDF, and Excel files attached to malicious emails.
  5. Why is AI a growing threat in cyber security?
    Because it can automate and enhance phishing, bypass protections, and adapt in real-time.
  6. Are American hackers behind the attacks?
    Not necessarily. But many attacks use US-based infrastructure or servers.
  7. How can companies defend themselves?
    With advanced firewalls, employee training, anti-phishing solutions, and SIEM systems.
  8. Are SMEs at risk too?
    Yes. Small and medium enterprises often lack strong cyber defenses.
  9. Is cloud technology making things worse?
    Yes, if poorly configured, cloud platforms can increase vulnerability.
  10. Where can I find the full report?
    It’s published by Check Point and covered by Milano Finanza.
To top