Skip to content

Austrian Cybersecurity Study 2025: Ransomware and Supply Chain Risks in Focus

Bottom line: Austrian companies are making cybersecurity progress, but still have significant organizational gaps in NIS2, DORA, and supplier risk management.

On October 2, 2025, Vorarlberg University of Applied Sciences presented the results of the study “Cybersecurity in Austria 2025” and discussed current threats and regulatory requirements. The study shows that Austrian companies have made progress, but continue to struggle with structural challenges in implementing NIS2, DORA, and managing supplier risks.

The “100 Minutes Cyber” event provided an overview of the current cybersecurity landscape in Austria. The focus was on ransomware and phishing attacks, increasing attacks on critical infrastructure, and hybrid threats. In addition, the use of artificial intelligence was examined as a dual challenge – both as a tool for strengthening cyber resilience and simultaneously as a new attack vector.

The study results from KPMG Austria showed that while many Austrian companies have made progress in their cybersecurity, structural and organizational gaps persist. This applies in particular to compliance with new EU regulations such as NIS2 and DORA, as well as systematic management of supplier risks and attack surface along supply chains. Disinformation in times of geopolitical tensions and questions of digital sovereignty were also discussed as relevant risk factors.

CISOs should use these results to identify gaps in their organizational cyber governance: regulatory compliance must not be conducted in isolation, but must be integrated with measures for supply chain security and AI-enabled defense capabilities. The event demonstrated that successful cyber resilience requires a combination of technical expertise, practical training, and strategic risk management.


Source: kompetenzzentrum-sicheres-oesterreich.at · Published January 28, 2026
Lumi AI News — AI-assisted curation in accordance with Article 50 EU AI Act. Paraphrase and classification by Lumi News Pipeline v1.2.0.

Share on: