October 1, 2025: Mandatory reporting of cyberattacks – tighter rules begin in Switzerland
As of October 1, 2025, the sanctioning regime under the Information Security Act (ISecA) will come into force in Switzerland regarding the obligation to report cyberattacks reguarding critical infrastructure. The reporting obligation has already been in effect since April 1, 2025. From October 1, 2025, however, sanctions will apply: failure to report incidents in cases […]