NIS 2026 Reminder: 8 Days Left Before the 28 February Registration Deadline

Organizations in scope of Italy's NIS regime have until 28 February 2026 to complete annual registration via the ACN Services Portal. Both new and pr…

ACN Adopts Incident Taxonomy Under Law 90/2024: What Obligated Entities Must Do Now

ACN adopted the incident taxonomy under Law 90/2024 via the Determina of 9 February 2026. Obligated entities must now report incidents within 24 hour…

EU Cybersecurity Act Revision – COM(2026) 11: What Changes and Why It Matters

The European Commission's January 2026 proposal to revise the EU Cybersecurity Act: supply-chain risk governance, simplified certification (ECCF), EN…

Cybersecurity Monthly Report – January 2026 (Italy, EU, Global)

Aegister’s January 2026 monthly cybersecurity report: EU cybersecurity package with Cybersecurity Act revision and NIS2 simplification amendments, DO…

DORA Implementation in Italy: A New Era for Financial Cyber Resilience

Italy transposes the EU's Digital Operational Resilience Act (DORA) with new obligations for financial institutions on ICT risk, incident response, a…

The EU Cyber Solidarity Act: A New Pillar of Collective Resilience

The EU Cyber Solidarity Act introduces coordinated mechanisms and shared capabilities to improve threat detection, incident response, and strategic r…

Cybersecurity Update – Week 22 of 2025

Aegister's weekly cybersecurity update for Week 22 of 2025, covering major threats, trends, regulatory changes (NIS2, DORA), GRC topics, and internat…

NIS 2: Deadline Extension for Companies Until July 31

ACN extends the NIS 2 compliance deadline to July 31, 2025, for organizations that have requested support, providing additional time for data updates…

NIS 2: Basic Security Measures Defined by ACN for Essential and Important Entities

The Italian Cybersecurity Agency (ACN) has published baseline security measures for entities under NIS 2, with operational deadlines and flexibility …

Cyber Threats in Italy – ACN Operational Summary, April 2025

The ACN's April 2025 Operational Summary highlights a rise in ransomware and DDoS attacks in Italy, with key sectors like telecoms and public adminis…

NIS2: Upcoming Obligations for Italian Organizations – Deadline May 31, 2025

The NIS2 Directive imposes new responsibilities on Italian organizations classified as essential or important entities. Discover the obligations to b…

Ransomware 2024: Italy Among the Most Targeted Countries

Ransomware attacks in Italy surged in 2024, placing the country among the most affected in the world. Find out which sectors are at risk and how to r…

Cloud Security: How Aegister Protects Your Business from Misconfigurations, Malware, and Compliance Risks

Discover how Aegister's Cloud Defender enhances your cloud security, addressing misconfigurations, malware threats, and ensuring compliance with GDPR…

The Aegister Method: A Structured Approach to Cybersecurity

Aegister's cybersecurity method is a structured, personalized process designed to protect businesses with precision, starting from risk analysis to c…

GISEC 2025: Aegister Closes a New Chapter of Innovation and Global Connections

Aegister wraps up its second consecutive participation at GISEC Global 2025, sharing future-driven cybersecurity solutions from stand SP64 in Dubai.

Aegister Expands Distribution Network Through Strategic Partnership with Alias S.r.l.

Aegister S.p.A. announces a new distribution agreement with Alias S.r.l., enhancing its reach in the cybersecurity market through a strategic partner…

Aegister at GISEC Global 2025: Showcasing Cybersecurity Innovation in Dubai

Aegister returns to GISEC Global 2025 in Dubai, presenting its latest cybersecurity solutions at stand SP64.

vCISO by Aegister: Strategic Cybersecurity Without the Full-Time Cost

Aegister's vCISO offers strategic cybersecurity leadership tailored to your business without the full-time cost of a traditional CISO.

Introducing Aegister VPN with Built-in IP Reputation and Threat Intelligence

Aegister VPN offers a comprehensive security solution by integrating IP reputation analysis with threat intelligence.

Aegister project funded under Campania Region grant

Aegister S.p.A. has received funding for a cybersecurity project aimed at high-risk SMEs. The project is currently in progress and focuses on develop…

UNI/PdR 174:2025 for NIS Organizations Certified to ISO 27001: What It Changes Operationally

ACN published UNI/PdR 174:2025 as an operational bridge between ISO/IEC 27001 and NIST CSF 2.0 for NIS-scoped organizations. It helps ISO-certified e…

SECURE First Open Call 2026: What mSMEs Need to Submit Before 29 March 2026

The SECURE First Open Call (28 Jan – 29 Mar 2026) offers up to EUR 30,000 per project at 50% co-financing to help mSMEs achieve Cyber Resilience Act …

NIS2 Point of Contact and CSIRT Contact Role: Accountability and Operating Duties

NIS2 implementation guidance distinguishes the legal Point of Contact from the operational CSIRT contact role. Practical guide to role formalization,…

NIS2 Supply-Chain Security: Managing Critical Suppliers and High-Impact Procurements

NIS2 supply-chain security is a governance obligation covering supplier identification, risk assessment, contractual integration, and lifecycle monit…

NIS2 Documentary Evidence and Audit Readiness: How to Structure Compliance Proof

ACN baseline guidance requires documentary evidence as a core compliance element. Practical guide to evidence families, obligation-to-evidence mappin…

NIS2 Significant Incident IS-3: Violation of Expected Service Levels

IS-3 in the ACN baseline model covers service-level violation incidents affecting entity services and activities. Practical guide to qualification, s…

NIS2 Significant Incident IS-2: Integrity Loss Affecting Digital Data

IS-2 in the ACN baseline model covers integrity loss affecting digital data under entity ownership or control. Practical guide to qualification, evid…

NIS2 Significant Incident IS-1: Confidentiality Loss Affecting Digital Data

IS-1 in the ACN baseline model covers confidentiality loss affecting digital data under entity ownership or control. Practical guide to qualification…

NIS2 Incident Typology Model: Condition, Compromise, and Affected Object

ACN baseline guidance classifies significant incidents through condition, compromise, and object of compromise. Practical guide to using the typology…

NIS2 Recovery Controls (RC): Operational Resilience and Service Restoration

The NIS2 Recovery (RC) domain defines how entities restore operations after incidents and sustain resilience. Practical guide to restoration procedur…

NIS2 Response Controls (RS): Containment and Eradication in Incident Handling

Containment and eradication are iterative response steps that limit damage and remove attacker persistence. Practical guide to strategy selection, ev…

NIS2 Response Controls (RS): Signaling and Investigation Operating Model

The NIS2 Response (RS) domain requires structured incident response through signaling, investigation, and iterative decision loops. Practical guide t…