In 2025, cyberattacks in Spain increased by 35%, surpassing 45,000 attacks per day.
This rise not only targets private companies but also affects public institutions and essential service providers, putting critical national infrastructure at risk.
Source: Elderecho.com – “Los ciberataques en España crecen un 35% en 2025 y superan los 45.000 diarios”
The average cost of a cyberattack for a Spanish SME is estimated at €75,000, while public entities can face costs exceeding €250,000, considering operational downtime, recovery, and reputational loss.
Source: Cámara Valencia – “Qué coste económico y empresarial puede suponernos un ciberataque”
A major cyber incident can paralyze essential services, from municipal systems to public healthcare.
Studies indicate that 60% of SMEs that suffer a severe attack close within six months, revealing how unprepared many organizations still are to respond effectively.
Source: IT Digital Security – “El 96% de las empresas españolas ha sido blanco de ciberataques en los últimos 12 meses”
In 2024, 96% of Spanish organizations were targeted by cyberattacks, and 66% reported an increase in both frequency and complexity.
Attackers are increasingly focusing on supply chains, local administrations, and third-party providers, exploiting integration points and legacy systems.
SMEs represent around 70% of all cyberattack targets in Spain, but public administrations face similar exposure levels due to a lack of unified protection and technical staff.
This combination makes them the most vulnerable points in the national cybersecurity chain.
Source: EFE – “Google avisa que España tiene un problema gordo: el 43% de los ciberataques son a pymes”
Both SMEs and public institutions often rely on fragmented or foreign cybersecurity tools, generating visibility and compliance gaps.