Spain exceeds 97,000 cybersecurity incidents in 2024: Has the time come for cybersecurity?

The cybersecurity landscape in Spain in 2024 once again leaves record numbers. According to official data from the National Institute of Cybersecurity (INCIBE), last year they were registered 97,348 cybersecurity incidents, representing an increase of 16.6% compared to 2023. This fact has rekindled the debate about the real need for a cyber insurance, both for companies and citizens.

‍

Radiography of the digital incident: companies and individuals in the spotlight

Of the total number of detected attacks, the 67.6% affected citizens (65,808 incidents) and the 32.4% to companies, including SMEs and the self-employed (31,540 cases). The main threats continue to be ransomware, phishing and online fraud, with a clear growth of campaigns aimed at essential economic sectors, such as healthcare, energy and transport. In addition, INCIBE reported the existence of more than 183,000 vulnerable systems, which shows that the attack surface continues to grow with digitalization.

‍

What is cyber insurance and why is it increasingly important?

Un cyber insurance is a policy designed to protect against risks derived from the use of technology and the management of digital information. More and more companies and individuals are turning to these insurances as a backup to mitigate economic, legal, operational and reputational damages resulting from a cyberattack.

The most advanced policies cover:

• Data and system recovery after an attack.
• Legal expenses and communication to clients affected.
• Regulatory sanctions for non-compliance with the Data Protection Act.
• Losses due to business interruption and fraud.
• Additional services, such as security audits and preventive training for employees.

‍

Cybersecurity trends and evolution in 2025

Awareness of the importance of cyber insurance is growing in Spain, especially in the most exposed and regulated sectors. Competition between insurers has improved coverage, lowered some prices and added value-added services — such as quick response or 24/7 technical assistance — to differentiate themselves in an increasingly saturated market.

At the same time, the sophistication of cyberattacks—where AI and automation play a key role—forces companies to combine technological protection with solid financial support to ensure business continuity in the face of any incident.

‍

Is cyber insurance a profitable investment for companies and users?

Faced with thousands of annual incidents, more and more companies consider it essential to protect information, their systems and the trust of their customers with a cyber risk policy. Cybersecurity is no longer just for large companies: SMEs, institutions and even digitized individuals value economic and operational support in the face of an attack, as is the case with health or home insurance.

Hiring must be accompanied by preventive measures — training, vulnerability reduction, audits and early detection — to reduce the likelihood and impact of any serious digital incident.

‍

Is your organization protected against digital risk?

‍🛡️ At Apolo Cybersecurity we analyze, prevent and design adapted solutions to reduce vulnerabilities and help you choose appropriate cybersecurity.

‍