Publications

Featured publications

ENISA Threat Landscape 2025

Download

Through a more threat-centric approach and further contextual analysis, this latest edition of the ENISA Threat Landscape analyses 4875 incidents over a period spanning from 1 July 2024 to 30 June 2025. At its core, this report provides an…

NIS Investments 2025

Download

The annual NIS Investments report presents the findings of a study conducted by ENISA to explore how cybersecurity policy translates in practice across organisations in the EU and its effects on their investments, resources, and operations.

NIS2 Technical Implementation Guidance

Download

This report provides technical guidance to support the implementation of the NIS2 Directive for several types of entities in the NIS2 digital infrastructure, ICT service management and digital providers sectors. The…

All publications

By topics

By type

Publish Date
Foresight_Cybersecurity_Threats_For_2030-Update_2024_Extended_report.png

Foresight Cybersecurity Threats For 2030 - Update 2024: Extended report

This is the second iteration of the “ENISA Foresight Cybersecurity Threats for 2030” study that represents a comprehensive analysis and assessment of emerging cybersecurity threats projected for the year 2030. The report reassesses the previously…

National / EU authoritiesPrivate Sector
Cyber_Resilience_Act_Requirements_Standards_Mapping.png

Cyber Resilience Act Requirements Standards Mapping - Joint Research Centre & ENISA Joint Analysis

To facilitate adoption of the CRA provisions, these requirements need to be translated into the form of harmonised standards, with which manufacturers can comply. In support of the standardisation effort, this study attempt to identify the most…

Private Sector
Foresight_Cybersecurity_Threats_For_2030-Update_2024.jpeg

Foresight Cybersecurity Threats For 2030 - Update 2024

This booklet summarises upcoming challenges and provides for an assessment of the risks. We are now ready to design the cyber secure future ahead of us.

National / EU authoritiesPrivate Sector
Foresight_Cybersecurity_Threats_For_2030-Update_2024_Executive_Summary.png

Foresight Cybersecurity Threats For 2030 - Update 2024: Executive Summary

This is the executive summary of the second iteration of The “ENISA Foresight Cybersecurity Threats for 2030” study that represents a comprehensive analysis and assessment of emerging cybersecurity threats projected for the year 2030. The report…

National / EU authoritiesPrivate Sector
Telecom_Security_Incidents_2022.png

Telecom Security Incidents 2022

The present report provides anonymised and aggregated information about major telecom security incidents that happened in 2022.

National / EU authorities
Remote_ID_Proofing.png

Remote ID Proofing - Good practices

Through this report, ENISA aims to enhance stakeholder awareness, facilitate risk analysis in evolving threat landscapes, and bolster trustworthiness in remote identity proofing methods.

Private Sector
ENISA_Single_Programming_Document_2024-2026-Condensed_version.png

ENISA Single Programming Document 2024 - 2026 - Condensed version

The 2024 Work Programme outlines planned activities and objectives aimed at enhancing cybersecurity across the EU.

Best_Practices_for_Cyber_Crisis_Management.png

Best Practices for Cyber Crisis Management

This study highlights the complexities behind the notion of cyber crisis and the degree of subjectivity it involves. The elevation of a large-scale cyber incident into a cyber crisis relies predominantly on a political decision, and depends…

National / EU authorities

Trust Services Security Incidents 2022

This report, the Annual Report Trust Services Security Incidents 2022, provides an aggregated overview of the notified breaches for 2022, analysing root causes, statistics and trends. This report marks the sixth round of security incident reporting…
National / EU authorities

Cyber Insurance - Models and methods and the use of AI

The main objective of this report is to introduce cyber risk and cyber insurance, provide an overview of existing research and modelling approaches, and identify gaps for upcoming research projects.
Private Sector