← Torna al Blog
Regulation March 17, 2026 10 min di lettura

Francia ANSSI segnala calo ransomware sotto NIS2, violazione GDPR Companies House espone milioni, cyberattacchi in aumento del 36% nel Regno Unito

L'applicazione di NIS2 e l'Operazione Endgame guidano il calo dei ransomware in Francia. La vulnerabilità WebFiling di Companies House ha esposto i dati di 5 milioni di amministratori. Cyberattacchi nel Regno Unito in aumento del 36%. Police Scotland multata £66.000.

Is your organization NIS2-compliant? KENSAI scans your infrastructure against NIS2, DORA & GDPR requirements automatically.
Check Compliance →

128
Ransomware attacks in France 2025 (down from 141)
36%
YoY increase in UK cyber-attacks
5M
Directors exposed in Companies House breach
£66K
ICO fine for Police Scotland GDPR violation

1. France ANSSI: Ransomware Drops as NIS2 and Law Enforcement Bite

France's national cybersecurity agency ANSSI released its 2025 annual threat report on March 11, revealing a modest but meaningful decline in ransomware attacks — from 141 incidents in 2024 to 128 in 2025. While the raw numbers may seem incremental, ANSSI attributes the improvement directly to two forces: proactive cyber defense under NIS2 frameworks and large-scale law enforcement operations, particularly Operation Endgame.

What the Numbers Show

NIS2 Connection

ANSSI's data provides the first concrete evidence that NIS2-driven preparedness measures are reducing attack success rates across EU member states. France's implementation of NIS2 transposition measures — mandatory incident reporting, supply chain security requirements, and board-level accountability — appears to be creating measurable friction for ransomware operators.

NIS2 Key insight: ANSSI Director General Vincent Strubel emphasized that the blurring lines between nation-state actors and cybercriminals is complicating attribution. Groups now share tooling and divide tasks, making it harder to distinguish APT operations from financially motivated attacks.

2. UK Companies House: WebFiling Flaw Exposes 5 Million Directors

The UK's Companies House — the government registry for all British companies — was forced to take its WebFiling dashboard offline on March 14 after security researcher Dan Neidle exposed a devastating vulnerability. The flaw was trivially exploitable: log in with your own credentials, attempt to file for another company, press back when prompted for authentication — and land on that company's dashboard instead of your own.

GDPR Implications

⚠️ Regulatory Exposure

Under UK GDPR (retained from EU law), Companies House faces potential ICO enforcement action. The failure to implement basic access controls on a system holding millions of personal records, combined with the months-long exposure window, suggests inadequate technical and organizational measures under Article 32. Small businesses with few internal checks are most vulnerable to follow-on fraud.

3. UK Cyber-Attacks Surge 36% — Four Times the Global Rate

Check Point's February 2026 Global Threat Intelligence report reveals a stark divergence: while global cyber-attacks grew 9.8% year-over-year, UK organizations saw a 36% spike — nearly four times the global rate. UK firms faced an average of 1,504 attacks per week, with education, energy, government, healthcare, and financial services bearing the brunt.

Why This Matters for Regulation

4. Police Scotland: £66K ICO Fine for Egregious GDPR Failure

The UK Information Commissioner's Office fined Police Scotland £66,000 after the force shared the entire contents of a victim's phone — including medical records, intimate photos, and family contacts — with the colleague she had accused of rape. The data was extracted during an internal misconduct investigation and erroneously passed to the accused officer.

GDPR Violations Identified

The victim has been diagnosed with PTSD. The case underscores that GDPR enforcement extends well beyond corporate data breaches — law enforcement agencies face identical obligations when processing personal data.

5. CISA Emergency Directive: Cisco SD-WAN and Critical Infrastructure

CISA issued Emergency Directive 26-03 ordering all federal agencies to urgently patch Cisco Catalyst SD-WAN infrastructure following active exploitation of CVE-2026-20127 (CVSS 10.0). The vulnerability allows unauthenticated attackers to gain administrative access to SD-WAN systems managing distributed government networks.

Regulation Angle

Regulation Status Dashboard — March 2026

Regulation Status This Week's Impact
NIS2 Enforcement active across EU ANSSI data shows first evidence of ransomware reduction linked to NIS2 preparedness
GDPR Fully enforced (UK & EU) Companies House breach + Police Scotland fine demonstrate ongoing enforcement intensity
DORA Applied since Jan 17, 2025 Financial sector among most attacked in UK surge — ICT resilience testing urgency increases
EU AI Act Phased enforcement through 2027 Shadow AI risk data (88% of orgs exposed) underscores urgency of AI governance frameworks
CRA Transitional period until 2027 ENISA's SBOM and supply chain security consultation deadline approaching

What Organizations Should Do This Week

  1. Patch Cisco SD-WAN immediately — CVE-2026-20127 is a CVSS 10.0 under active exploitation. NIS2 essential entities cannot wait for standard patch cycles
  2. Audit access controls on public-facing systems — The Companies House bug was trivially exploitable. Test your own customer portals for similar session management flaws
  3. Review data minimization practices — The Police Scotland case shows that extracting "everything because it's faster" violates GDPR Article 5(1)(c). Only collect what's necessary
  4. Inventory GenAI tool usage — With 88% of organizations leaking data through AI prompts, DORA and EU AI Act compliance requires governance of shadow AI
  5. Respond to ENISA's SBOM consultation — The call for feedback on supply chain security and package manager guidance closes soon. NIS2 and CRA compliance depend on software supply chain visibility

Stay Compliant with NIS2, DORA & GDPR

KENSAI continuously scans your infrastructure for regulatory compliance gaps. Automated vulnerability assessment, NIS2 readiness checks, and real-time alerts when new critical CVEs affect your systems.

Start Free Compliance Scan →

← Torna al Blog