Skip to main content

In order to assess the cybersecurity risks and to support the monitoring and mitigation of this risk, CySEC has issued the Circular 512 on 17 May 2022, for the purpose of collecting information from the supervised entities.

In particular, CySEC wishes to collect information on any cybersecurity incident (successful and unsuccessful attacks) affecting the supervised entities in order to assess potential related targets and how risk is evolving in the market.

The supervised entities are requested to report to CySEC any cybersecurity incident that is abnormal/ extraordinary from the supervised entity’s scope, volume and level of sophistication and using new means/ techniques, as of the date of this circular.

The supervised entities:

  1. Should use the Reporting Form which is attached here.
  2. Submit the relevant form by email to as soon as they become aware of these incidents.
Read more

Request more information