European Union Agency for Cybersecurity (ENISA) – European Cybersecurity Month 2025

The European Cybersecurity Month (ECSM) is the EU’s annual awareness campaign on cybersecurity, coordinated by ENISA and the European Commission, together with EU Member States and stakeholders across Europe.

This year, the spotlight is on phishing, the most common entry point in cyberattacks, responsible for nearly 60% of initial intrusions. With the rise of AI-supported phishing campaigns, already accounting for over 80% of social engineering activity worldwide, raising awareness has never been more important. The campaign highlights different forms of phishing and scams, from spearphishing and smishing to quishing, whaling, and deep fakes.

Beyond awareness, ECSM 2025 also aims to bridge the cybersecurity skills gap by inspiring young talents to pursue careers in cybersecurity through initiatives such as the European Cybersecurity Challenge (ECSC) and the International Cybersecurity Challenge (ICC). These events help develop both technical expertise and essential soft skills for the next generation of professionals.

Read the relevant press release issued by ENISA here.