European Union Agency for Cybersecurity (ENISA) – Threat Landscape 2024

The European Union Agency for Cybersecurity (ENISA) celebrates its 20th anniversary in 2024. Throughout these years, ENISA has been closely tracking and analyzing cybersecurity threats across the EU, notably through its annual ENISA Threat Landscape (ETL) report and various situational awareness and threat intelligence products. The ETL has become essential for understanding cybersecurity trends, supporting critical decisions, and shaping priorities and recommendations within the EU's cybersecurity efforts.

The 2023–2024 ETL report highlights an intensified cybersecurity threat landscape amid a year of rising geopolitical tensions. The latter half of 2023 and early 2024 saw significant increases in both the diversity and volume of cyberattacks, with ongoing regional conflicts heavily influencing this surge. Hacktivism has also escalated, fueled by major events like the European Elections, which prompted heightened activity in the space.

The report identifies seven major cybersecurity threats, led by availability threats, followed by ransomware and data-targeted threats. Each is examined in depth, analyzing thousands of publicly reported cybersecurity incidents and events:

- Ransomware
- Malware
- Social Engineering
- Threats against data
- Threats against availability: Denial of Service
- Information manipulation and interference
- Supply chain attacks

The report includes an in-depth analysis of the 2023-2024 vulnerability landscape, as well as a comprehensive review of four distinct categories of threat actors, specifically:

- State-nexus actors
- Cybercrime actors and hacker-for-hire actors
- Private Sector Offensive actors (PSOA)
- Hacktivists

You can access the full ENISA Threat Landscape 2024 report here.