Companies’ reporting of cybersecurity incidents to European regulators surged in 2025, breaking with a years-long plateau, according to a new report.
The average number of data breaches reported daily to EU data protection authorities increased by 22% in 2025, surpassing 400 for the first time since 2018, DLA Piper reported, citing the firm’s survey of GDPR fines and data breaches.
The spike in cyber incidents disclosed last year reflected not just an increase in cyber attacks, but also the wave of laws with unique cyber incident disclosure requirements.
“What this is is a clear trend that we are seeing an ...