7 in 10 Romanian Companies Vulnerable to Cyberattacks, Economic Risks Exceed Billions
Translated from Romanian, summarized and contextualized by DistantNews.
At a glance
- Over 70% of Romanian companies are completely vulnerable to cyberattacks, with potential damages exceeding billions.
- The convergence of IT and OT systems means digital breaches now cause immediate operational damage, paralyzing production and services.
- A recent survey found 7 out of 10 entrepreneurs admit to not taking extra cyber security measures, and most lack incident response protocols.
Cybersecurity has evolved beyond a mere IT department concern, becoming a critical issue for national infrastructure as Industry 4.0 blurs the lines between the digital and physical worlds. Cyberattacks now directly impact critical infrastructure, leading to blocked production lines, paralyzed hospitals, endangered energy grids, and halted transportation systems.
In Romania, the situation is dire, with a specialized study revealing that over 70% of companies are completely vulnerable to cyberattacks. The potential financial damages are estimated to be in the billions, a figure confirmed by data from Romanian authorities and international security organizations for 2025 and 2026. The primary cause of these structural vulnerabilities lies in the digitalization of production and administration processes, making interconnected software infrastructure highly susceptible to attacks.
Experts emphasize that the convergence of Information Technology (IT) and Operational Technology (OT) means a digital breach instantly translates into real operational damage. Companies are no longer just losing data; they are losing their ability to function. A survey conducted between June 30 and July 2, 2026, showed that 7 out of 10 entrepreneurs acknowledge not implementing additional security measures against cyberattacks. A significant majority, 53%, rely solely on IT teams and traditional software protection, while 87% lack any special protocol for managing cyber incidents.
"Too few companies are prepared for cyberattacks, for situations where production can be shut down remotely, where their data can be deleted or stolen, where all activity can be paralyzed with huge financial consequences," stated analyst Adrian Negrescu. National Directorate for Cybersecurity (DNSC) data indicates approximately 27.08 million relevant cybersecurity events were recorded in 2024, with "brute force" attempts being the most common, followed by information-gathering scans.
Originally published by Adevฤrul in Romanian. Translated, summarized, and contextualized by our editorial team with added local perspective. Read our editorial standards.