IT disaster recovery, cloud computing and information security news

ENISA publishes annual report on downtime and incidents in the European electronic communications sector

Details

ENISA has released a report which provides an overview of the root causes of outages and incidents in the European electronic communications sector during 2015 and an aggregation of the services and network assets that were impacted.

Incidents are reported on an annual basis by European Telecom Regulators under Article 13a of the Framework Directive (2009/140/EC) to ENISA and the European Commission. In 2015, 138 major incidents were reported, from 21 EU countries and 2 EFTA members while 9 countries reported no significant incidents. Most incidents reported involve mobile telephony, which was the most affected service in 2015. The most frequent causes for incidents are system failures.

Key findings include:

  • Mobile Internet is the most affected service. In 2015 mobile Internet accounted for 44 percent of all reported incidents. Mobile internet and mobile telephony were the predominant affected services in the previous years too, except for 2014 where fixed telephony was the most affected.
  • System failures are the dominant root cause of incidents. 70 percent of the 2015 incidents were caused by system failures or technical failures. In the system failures category, software bugs and hardware failures were the most common causes; affecting switches, routers and mobile base stations.
  • Human errors affected on average more user connections per incident. In 2015 human errors were the root cause category involving most users affected, accounting for almost 2.6 million user connections on average per incident. Second place was taken by system failures with 2.4 million user connections on average per incident.
  • Malicious actions are not focused on causing disruptions. The total number of incidents caused by malicious actions dropped to 2.5 percent in 2015 from 9.6 percent in 2014. This may indicate that the malicious actions are not necessarily aiming at causing unavailability of services, but might have other objectives. Nevertheless, these types of incidents (for example DDoS) had the most impact in terms of duration, causing on average almost two days of disruption per incident.

The full report is available here (PDF).


Want news and features emailed to you?

Signup to our free newsletters and never miss a story.

The Hunt for Hidden Risks
The Business Continuity Business Case

Additional Resources

A website you can trust

The entire Continuity Central website is scanned daily by Sucuri to ensure that no malware exists within the site. This means that you can browse with complete confidence.

Business continuity?

Business continuity can be defined as 'the processes, procedures, decisions and activities to ensure that an organization can continue to function through an operational interruption'. Read more about the basics of business continuity here.

Get the latest news and information sent to you by email

Continuity Central provides a number of free newsletters which are distributed by email. To subscribe click here.