23/06/2026
Since April 2025, cyberattacks on critical infrastructure in Switzerland must be reported to authorities within 24 hours. The first data is in, and it reveals a striking picture.
In the second half of 2025, 145 mandatory incident reports were filed. The sectors hit hardest were:
• public administrations (25%)
• IT and telecom providers (18%)
• finance and insurance (16%)
• and energy suppliers (12%)
Unlike the fraud and phishing that dominate threats to private individuals and SMEs, attacks on critical infrastructure are spread across multiple methods: hacking leads the list at 20%, followed closely by credential theft (14%), DDoS attacks (13%), and malware (11%).
Understanding who gets attacked and how is the first step towards effective protection. SATW has analysed the latest Swiss data, including an interactive chart that allows to explore the numbers yourself.
👉 Read the full analysis: https://zurl.co/mzoHP