Table of contents
- Italy among Europe’s most targeted nations
- DDoS: more powerful and distributed than ever
- Artificial Intelligence: the double-edged sword
- Europe responds: NIS2, DORA and Cyber Resilience Act
- A cultural challenge beyond technology
Italy among Europe’s most targeted nations
Cyberattacks in Italy have reached alarming levels about 4,000 incidents per day in 2024.
This data comes from the first Cyber Security Report published by TIM and the Cyber Security Foundation, Italy’s first non-profit organization entirely dedicated to digital security.
The study identifies DDoS attacks and ransomware as the most dangerous and fast-growing threats.
According to Marco Gabriele Proietti, founder of the foundation, “This report is more than a technical snapshot it’s an invitation to change pace. We need a stronger culture of cyber security that goes beyond emergency responses. Data are a collective asset that must be protected with transparency and foresight.”
DDoS: more powerful and distributed than ever
The report shows a 36% increase in DDoS attacks, with an average of 18 incidents per day.
Almost 40% exceed 20 Gbps, making them far more difficult to mitigate.
Hackers are now targeting multiple points simultaneously, bypassing traditional defense systems.
The public sector is one of the hardest hit: in just one year, cyberattacks against Italian public administrations grew from 1% to 42%.
Ransomware: Italy ranks second in the EU
When it comes to ransomware, Italy is the second most targeted country in the European Union, with 146 confirmed cases in 2024.
The most affected sectors are services (58%) and manufacturing (26%). A major reason behind this growth is the Ransomware-as-a-Service model, which allows even inexperienced users to purchase attack tools and launch large-scale operations.
Artificial Intelligence: the double-edged sword
Artificial Intelligence (AI) is both an ally and a threat. On one hand, it helps organizations detect anomalies and predict attacks; on the other, it empowers hackers to design more convincing and difficult-to-detect phishing or ransomware campaigns.
Europe responds: NIS2, DORA and Cyber Resilience Act
In 2024, Europe introduced a new set of legislative tools to strengthen digital defenses: NIS2, DORA, and the Cyber Resilience Act. These regulations aim to raise cyber security standards for all companies especially SMEs by requiring continuous risk assessment, incident reporting, and stronger coordination between Member States.
As Eugenio Santagata, Chief Public Affairs, Security and International Business Officer at TIM, explains:
“TIM detects early signs of attacks every day. This allows us to provide real-time data and insights. The report is meant to strengthen collective defenses through shared knowledge.”
A cultural challenge beyond technology
The increase in cyberattacks highlights a deeper issue: the lack of cyber security awareness.
Building resilience is not only about firewalls or encryption it’s about education and prevention.
The Cyber Security Foundation calls for nationwide efforts to promote digital literacy, encouraging cooperation between institutions, businesses, and citizens to protect what has become the country’s most valuable asset: data.
