Cybersecurity threats are evolving faster than ever, and so must the ways organisations understand and counter them. The recently published eco IT Security Survey 2025 paints a complex picture of the digital threat landscape — one where artificial intelligence (AI), automated attacks, and foundational infrastructure weaknesses are redefining risk and resilience for companies across Europe.
AI: defence tool and attack multiplier
The 2025 survey shows that companies are increasingly strategic in their security posture, with AI playing a central role in detecting anomalies and anticipating attacks. Yet this powerful technology is a double‑edged sword. Experts warn that AI‑driven threats – from sophisticated phishing to accelerated vulnerability scans – are on the rise, meaning defenders must match attackers in agility and innovation.
This theme echoed strongly at the Internet Security Days (ISD) 2025, where cybersecurity leaders emphasised that email remains a critical battleground in the fight for digital sovereignty. Caroline Krohn, Head of Digital Consumer Protection at the German Federal Office for Information Security (BSI), highlighted that over 90 % of ransomware attacks begin with malicious email vectors, prompting collaborative initiatives such as BSI and eco’s Email Security Year 2025 to promote stronger protocols like DNSSEC and DANE rather than relying solely on user awareness.
Emerging strategic threats: DDoS and quantum
Security intelligence in 2025 also highlights the evolution of threats long thought to be “background noise.” According to Lisa Fröhlich of Link11, DDoS attacks have transformed into strategic instruments that can disrupt business continuity, harm reputations, and impact critical infrastructure — especially as attacks become AI‑enhanced and politically motivated. Defence strategies must evolve accordingly to include adaptive, automated mitigation measures.
Looking even further ahead, industry voices like Harald A. Summa point to quantum computing as a looming challenge and opportunity for digital resilience. The adoption of post‑quantum cryptography and quantum key distribution is emerging as a necessary step to protect digital trust as quantum technologies progress.
Holistic, strategic security takes centre stage
The eco IT Security Survey 2025 reveals that companies are not just reacting, they are planning. More organisations are defining incident response frameworks, investing in regular employee training, and increasing budgets to strengthen security postures. These developments underscore a growing recognition that cybersecurity is not merely a technical issue, but a strategic imperative for business continuity and digital sovereignty.
Oliver Dehning, eco Security Expert and Head of the eco Security Competence Group, reflects on the findings by stressing that only a blend of prevention, awareness, and intelligent defence strategies, including next‑generation technologies, can equip organisations against today’s increasingly capable adversaries.
Be part of the 2026 eco IT Security Survey — your expertise matters!
Cybersecurity challenges are constantly shifting, and the value of the eco IT Security Survey lies in capturing timely, practical insights from experts like you. With the newly redesigned survey covering a wide range of topics — from regulatory readiness and incident response to technology adoption and future threat outlooks — your input will help shape the facts that guide the industry in 2026 and beyond.
👉 Take a few minutes to contribute your expertise:
https://ecoev.limesurvey.net/932247
Your voice will help ensure the survey reflects the most accurate and actionable picture of the current cybersecurity landscape — from boardroom priorities to frontline defensive realities.
Download the full report on the 2025 eco IT Security Survey and explore how the industry is responding to emerging risks, strengthening resilience, and preparing for the threats of tomorrow:
📥 https://international.eco.de/download/268330/
