Italy's ACN Reports 10% Decrease in Cybersecurity Incidents for May 2026 Amid NIS2 Directive Implementation
cybersecurity_incidentscyber_threatsNIS2_DirectiveACNcybersecurity_governanceincident_reportingproactive_risk_managementcybersecurity_newscybersecurity_analysishacking_attacksmalwarephishingvulnerabilitiesDDoSCSIRTbusiness_email_compromiseaccess_credentialssuppliers
In May 2026, Italy’s National Cybersecurity Agency (ACN) reported 158 cybersecurity incidents, marking a 10% decrease compared to April 2026. The data was included in ACN’s operational summary, which highlighted ongoing challenges in shifting organizational approaches from incident notification to proactive risk governance. The implementation of the NIS2 Directive has increased visibility into cyber threats, though concerns remain about treating incident reporting as a reactive measure rather than a strategic priority. No specific attack vectors, technical details, or impacted sectors were disclosed in the summary. The report underscores a broader trend of organizations struggling to integrate cybersecurity as a core governance function.