ENISA (European Union Agency for Cybersecurity)

EU government cybersecurity body. The wiki’s primary EU-side government source on AI threat landscape and incident statistics — the European counterpart to NIST and CISA in the US.

Notable outputs

• ENISA Threat Landscape 2025 (enisa.europa.eu/publications/enisa-threat-landscape-2025) — Reports 4,875 EU incidents (Jul 2024 – Jun 2025); confirms identity- and credential-themed risk acceleration; positions 2025 as the inflection year for AI-shaped threats.
• Adjacent guidance on AI cybersecurity, NIS2 implementation, and EU AI Act technical aspects.

Why it matters for the wiki

ENISA is the EU government data source the wiki was previously missing. For EU AI Act compliance discussions, ENISA’s threat landscape and technical reports are the authoritative complement to Annex IV evidence requirements. Useful for D1 (Governance) CMM evidence in EU-deployed contexts and as a non-US triangulation for breach-cost claims.

See Also

• Source Triangulation Audit 2026-05-02 — Claim 1 (NHI), Claim 6 (cost)
• EU AI Act — primary regulatory regime
• World Economic Forum — international-leader-survey counterpart