Dublin: Ireland is bracing for an increased risk of cyberattacks and intelligence gathering from “hostile states” as it prepares to assume the EU Presidency from July 1, 2026. This warning was issued by cybersecurity experts at the country’s second National Cyber Security Conference.
Presidency-Related Threats
Assistant Garda Commissioner Michael McElgunn highlighted the need to be mindful of the approaching EU Presidency, stating Ireland is likely to be a target for intelligence gathering and attempts to “exercise influence” via cyber activity.
Richard Browne, Director of the National Cyber Security Centre (NCSC), acknowledged that the Presidency term is likely to attract unwanted attention. He specified that potential attacks would include:
- Attacks on service providers.
- Attacks in the “disinformation space”.
Mr. Browne confirmed the NCSC is actively conducting risk assessments to build an evolving response plan for the Presidency. He added that since the major 2021 cyberattack on the HSE, Ireland’s cyber defences have matured, and the country is now considered “an advanced counterpart” and a “top-tier European operation centre” by the rest of Europe.
Three Broad Cyber Risks
Mr. Browne outlined three primary cyber risks currently facing Ireland:
- Geopolitical Risk: The security landscape shaped by conflicts, particularly the one between Russia and Ukraine.
- Evolving Technology: Changes in technology, especially the accelerating pace and adoption of Artificial Intelligence (AI).
- Supply Chain Disruption: The vulnerability of digital services due to a “heavily dependent on a vendor ecosystem that’s both global in nature and opaque in character.”
Regarding AI, Mr. Browne warned that “Nation state actors are heavy and early adopters of AI,” and the battle over this technology will see “cyber have-nots” (those with less technical affinity) increasingly targeted in the national security space.
Phishing Remains the Weak Point
Despite the focus on advanced state-level threats, the conference heard that basic cyber safety remains critical.
Colm Stapleton, NCSC Director of Operations, noted that phishing scams (where users are lured into clicking nefarious links or emails) are still the dominant type of incident the centre encounters. He stressed that “Humans are the weak point,” and simple measures like regularly changing passwords and always changing default passwords can still solve most problems.
