In an increasingly hostile and dynamic geopolitical environment, regional cooperation and intelligence sharing are decisive factors to ensure the delivery of public services and foster society’s trust in institutions.
A Sector Under Attack
In the first half of 2025, the public sector established itself as the main target of cyberattacks across our regions of Europe and Latin America, with an increase of nearly 40% compared to the previous semester, according to data from the latest NTT DATA semiannual threat report. Behind these attacks there are not only economic motivations, but also political pressure, strategic information, and disruption of critical services. In countries such as Spain, Portugal, and France, campaigns targeting healthcare and transportation systems were recorded, while, in international organizations, there is a growing interest in compromising decision-making systems.
Challenges in Public Management
The increased frequency and sophistication of attacks present challenges that go beyond technical issues. Public sector leaders view cybersecurity as a central topic for institutional continuity and societal trust. They face challenges that include ensuring essential services and standardizing the management of different infrastructures by ministries, agencies, and public entities, each with varying levels of maturity. Leaders must also respond to regulatory pressure, such as the adoption of European frameworks like NIS2, DORA, and the Cyber Resilience Act. These frameworks require organizations to make organizational, regulatory, and financial adjustments. In a scenario of limited resources, leaders must balance investments in digital defense with other budgetary priorities.
An Integrated and Tailored Approach for the Sector
Beyond technology, cybersecurity strategy in the public sector must be structured around three pillars:
1. Governance and Institutional Leadership
- Define clear models of responsibility and accountability.
- Promote uniform policies across public administration, reducing territorial and sectoral disparities.
2. Skills and Talent
- Continuously invest in the training of public employees, who represent the first line of defense against manipulation and fraud.
- Continuously invest in the training of public employees, who represent the first line of defense against manipulation and fraud.
3. Regional and International Collaboration
- Establish mechanisms for intelligence sharing on threats among countries in the region, multilateral organizations, and strategic partners.
- Actively participate in international cyber defense exercises to strengthen readiness for transnational crises.
Challenges in a Shifting Geopolitical Context
International polarization and regional conflicts will continue to influence the dynamics of cyberattacks, with special attention to:
- Governmental and multilateral bodies involved in diplomacy and international cooperation.
- Critical energy, transportation, and healthcare infrastructure, where an attack could paralyze entire countries.
- Electoral and public decision-making processes, where disinformation and digital manipulation are used as tools of destabilization.
Conclusion
The public sector in the region is at the epicenter of modern cyber conflicts. The public sector in the region is at the epicenter of modern cyber conflicts. Cybersecurity is no longer an issue limited to IT departments—it is a matter of national strategy, where the continuity of services, societal trust, and institutional stability are at stake.
Investing in digital resilience is not optional—it is a fundamental commitment for governments across the region.