The government’s digital infrastructure is proving to be too vulnerable: in the telecoms and public sector
Telecoms operators have the advantage of a widespread presence, proprietary infrastructure, compliance with EU regulations and experience. But the gap with the American hyperscalers remains enormous
The cyberattack that struck the systems of several Italian public administrations in early May has brought an issue that can no longer be put off back to the forefront of the debate: just how vulnerable is the state’s digital infrastructure? And who can guarantee the security, continuity and control of citizens’ data in an increasingly uncertain geopolitical context?
The figures paint a grim picture. According to the International Trade Administration, Italia ranks fourth in the world and first in Europe in terms of the number of cyber-attacks suffered, accounting for 10 per cent of global attacks recorded in 2024.
The frequency of incidents has risen by 27 per cent in a year, from 2,779 to 3,541 incidents, with increasingly serious consequences. And whilst large companies are investing in advanced security measures, over 50 per cent of SMEs remain ill-prepared to deal with growing threats. Only 1% of Italian organisations are considered mature in terms of cyber security and cyber readiness.
Against this backdrop, the response that is taking shape centres on an alliance between public administrations and national telecoms operators. This is not a random choice, but rather the realisation that telecoms companies possess structural characteristics that are difficult for the major American hyperscalers to replicate: a widespread presence across the country, proprietary network infrastructure, experience in managing critical services and full compliance with European jurisdiction.
The issue goes beyond the mere localisation of data. When it comes to public services – from the civil register to healthcare, from the justice system to the tax authorities – requirements come into play that affect national security, citizens’ privacy and the continuity of the State’s operations. ‘The digital systems we manage in the public sector are no longer merely technical tools: they constitute critical infrastructure,’ observed Dirk Schrödter, Minister for Digitalisation in Schleswig-Holstein, in a recent interview. ‘ “If we lose control of our IT infrastructure, we risk losing our capacity for political and administrative action.” This is a consideration that applies to Germany, but also – and even more so – to Italia, where the fragmentation of systems within the public administration amplifies vulnerabilities.


