Preliminary data from the Swiss National Cyber Security Centre (NCSC) for 2024 indicate approximately 63,000 incident reports — a significant increase compared to previous years and a clear signal that the cyber threat is not slowing down.
The most concerning figure: phishing
In 2024, phishing messages reported to the NCSC exceeded 975,000. A number that does not include messages that are never reported — the real estimate is considerably higher.
The quality of these attacks has improved markedly. Phishing messages in 2024 are often:
- Written in correct and natural German, French or Italian
- Personalised with the recipient’s name and real details
- Visually identical to official communications from banks, postal services and public bodies
- Delivered via SMS (smishing) as well as email
Competition fraud
A strongly growing category: fake promotions from real, recognisable companies (retail chains, transport companies, electronics brands) that promise prizes in exchange for personal data or small payments. The impersonated companies are victims as much as the citizens — their brand is damaged without any responsibility on their part.
Advanced social engineering
Attackers increasingly use phone calls — not just email. They present themselves as bank employees, police officers or Microsoft technical support. They ask for credentials, verification codes, urgent bank transfers. The professional tone and accurate information about the victim (retrieved from social media or prior data breaches) makes these attacks highly convincing.
A reflection
Sixty-three thousand incidents in a country of 8 million inhabitants means that almost every active company has had at least one targeted employee during the year. The question is no longer whether your company will be targeted, but when — and whether you will be ready.
Sources
- NCSC — Semi-annual report 2024/2 (62,954 total incidents in the year): ncsc.admin.ch — Halbjahresbericht 2024/2