Endesa Energía has acknowledged unauthorized access to its sales platform, resulting in the theft of customer data related to their contracts, including identity documents and payment information. A malicious actor bypassed the security measures implemented by the company on its sales platform in a recent security incident, and the company has already begun notifying affected users via email. This incident, described by the company as "unauthorized and illegitimate access," led to the theft of sensitive personal data from customers related to their electricity and gas contracts. According to the company's investigation, the malicious actor "had access and could have exfiltrated" contact information, identity documents, and bank account IBANs. Endesa Energía clarifies that access passwords were not compromised.

In March 2023, the RansomHouse cybercriminal group attacked the Hospital Clínic in Barcelona through ransomware (ransomware) which paralyzed part of the healthcare activity, especially vital emergencies such as strokes and heart attacks, which had to be referred to other centers. It was a highly publicized cyberattack that lasted for days, but there have been many more in recent years. The Moisès Broggi, Dos de Mayo, and General de Hospitalet de Llobregat hospitals, or the Autonomous University of Barcelona (UAB), among others, are just a few examples.

Currently, in Catalonia there are about 27,000 professionals dedicated to in the world of cybersecurityThis is a growing sector, which last year generated revenues of up to €1.473 billion, almost 20% more than in 2023. The Catalan Cybersecurity Agency, however, warns of a talent gap that is hindering this growth: there are 13,500 qualified jobs. There are almost 400,000 across Spain and 4.76 million worldwide. In one year, this gap has increased by 12% in Catalonia.