Cyber threats require cross-border solutions
Cyber attacks have long been a global phenomenon. The new report from the Federal Office for Cyber Security highlights the international dimension of the threat situation and shows how Switzerland is responding with a new reporting obligation.
Cyber attacks are increasing in their sophistication and reach. The latest BACS semi-annual report shows how perpetrators operate internationally and what methods they use to bypass filters and reach new victims. Over 62,000 reports of cyber incidents were received in 2024. Private individuals are particularly frequently affected, but companies are also increasingly reporting CEO fraud, phishing and fraudulent prize draws.
New technologies, new tricks
Attackers are adapting. Instead of traditional text messages, they use RCS and iMessage to bypass security mechanisms. Deceptively genuine fake calls or the targeted flooding of email accounts with spam are now also part of the repertoire. Criminals do not shy away from misusing well-known brand names for their own purposes and spreading malware.
Digital dependencies as a risk
Global incidents such as the faulty CrowdStrike software update, which affected over 8.5 million systems, show just how fragile the digital infrastructure is. Delays in security standards such as the CVE program also underline the risks of one-sided technological dependency.
Swiss response Mandatory reporting
On April 1, 2025, the statutory reporting obligation for cyberattacks on critical infrastructure came into force in Switzerland. Operators in the energy, transport, administration and healthcare sectors are obliged to report serious attacks to the BACS within 24 hours. The regulation has been closely coordinated with international standards and EU directives and strengthens cross-border cooperation in the event of an emergency.
Early warning through international networking
In order to better manage global risks, Switzerland is intensifying bilateral exchanges with partner countries and organizations. The aim is to achieve an efficient, internationally coordinated flow of information on current threat situations and robust protection for critical infrastructures, both nationally and internationally.