In an increasingly digitized world, cybersecurity has become a strategic priority for companies. The year 2024 made it clear that this environment is not exempt from risks, with Spain highlighting as one of the countries most affected by cyber attacks in Europe. According to the latest economic report of the Secretary of State for Budgets and Expenses by the Ministry of Finance, the economic impact of these attacks is estimated at approximately 30,000 million euros per year.
In this context, Stoïk, the first insurtech of Europe specialized in cyber risks for small and medium enterprises, has presented the report of Cybernetic sinister 2024. This analysis, based on data of more than 5,000 insured in Europe, examines the accidents derived from cyber incidents, tearing the most frequent types of accidents and their financial impact.
During 2024, the frequency of accidents declared by Stoïk insured due to cyberbrains reached 4.34%, an increase of 12% compared to the previous year. However, this increase is moderate compared to 20% growth in cybersecurity incidents managed in Spain, according to data from the National Cybersecurity Institute (INCIBE).
Among the most relevant categories, the commitment of email accounts was the most common attack, representing 30% of cases. Bank transfer fraud and ransomware also stood out, representing 23% and 12.4% of the claims, respectively.
In Spain Cybersecurity incidents managed in 2024 registered a 20% increase compared to the previous year
“The growing sophistication of cyber threats and their impact on companies remind us that cybersecurity is no longer a luxury, but a strategic need. In Stoïk, we work to offer solutions that not only protect organizations against current risks, but also allow them to anticipate the challenges of the future«, Declares Jules Veyrat, CEO and co -founder of Stoïk.
Cybersecurity gaps that marked 2024
The year 2024 was marked by several significant cyber attacks that showed the fragility of the global digital ecosystem. One of the most prominent cases was the ransomware attack against Axido in June, which not only directly affected the company, but also had a domino effect on its clients and partners. The disconnection of axid systems to contain the attack generated prolonged interruptions and significant losses for companies dependent on their services, underlining the importance of diversifying suppliers and reinforcing business continuity plans.
Similarly, during the Olympic Games of Paris 2024, although there were no serious incidents that affect the development of the event, cybercounts took advantage of the enthusiasm generated to launch massive phishing campaigns. In this sense, from Stoïk different simulations were made through the use of their cybersecurity tool, Stoïk Protect, to evaluate the vulnerability of users to fraudulent electronic emails related to the games. Specifically, it was discovered that 45% of the emails sent were opened, and 33% of those who opened them shared their personal data, much higher than the average of the 10% registered in other awareness campaigns not related to this sporting event.
Outside this simulation, cybercriminals managed to steal thousands of data records during games by fraudulent emails. Although they did not have a direct impact on the event, the consequences began to demonstrate later and from September there was a significant increase in ransomware attacks, affecting large European companies such as Auchan, Volkswagen, Norauto, AEP GMBH and the French operator Free, whose data leaks monopolized media attention.
