The document below is a 2025 sub-report on cybersecurity, specifically targeting Dutch civil servants, conducted by Ipsos I&O on behalf of the Ministry of Economic Affairs. The study monitors civil servants' knowledge, attitudes and behaviors regarding digital security, and compares these findings with those of employees in large companies. The results show that officials generally rate their own knowledge of online security as fair to good, but also that the number of cybercrime incidents experienced at work, such as phishing, has increased significantly from 2024. Although most officials would report incidents and organizational measures are increasing (such as mandatory two-step logins and more training), nearly half of victims at work do not report or file a report, often because the incident was considered unimportant.
