Back

Bruno Frattasi Resigns as Director of Italy's National Cybersecurity Agency

Severity: Medium (Score: 51.0)

Sources: En.Ilsole24Ore, Ground.News, www.ilfattoquotidiano.it

Published: 2026-05-21 · Updated: 2026-05-22

Keywords: director, frattasi, prefect, frattase, agency, quacivi, place

Severity indicators: pla, rat

Summary

Bruno Frattasi has resigned as the Director General of Italy's National Cybersecurity Agency (Acn), effective May 21, 2026. His resignation comes nearly a year early, citing 'personal reasons'. Andrea Quacivi, former CEO of Sogei, is expected to succeed him. The resignation occurs amidst a significant rise in cyber incidents in Italy, with 436 recorded events in March 2026 alone, reflecting a 94% increase from January. The increase in cyber events is attributed to the implementation of the NIS 2 directive, which expanded reporting obligations to approximately 22,000 entities, including many private companies. Key sectors under attack include telecommunications, healthcare, and manufacturing. The transition in leadership raises concerns about the agency's coordination with other security entities, especially in light of recent attacks on critical infrastructure. Frattasi's tenure included challenges in managing the agency's response to cyber threats, including high-profile incidents affecting major companies. Key Points: • Bruno Frattasi resigned as Director General of the National Cybersecurity Agency. • Andrea Quacivi is set to replace him amid rising cyber incidents in Italy. • March 2026 saw 436 cyber events, indicating a significant increase in attacks.

Detailed Analysis

**Impact** The resignation of Bruno Frattasi as Director General of Italy's National Cybersecurity Agency affects the leadership overseeing national cyber defense amid a rising number of cyber incidents. In March 2026, Italy recorded 436 cyber events, stable compared to February but significantly higher than January, with 313 incidents reported—an 81% increase from the previous month. Key sectors impacted include telecommunications, healthcare, and manufacturing, with about 22,000 entities now under mandatory reporting due to the NIS 2 directive, half of which are private companies. The leadership change occurs during heightened hybrid warfare threats and ongoing challenges defending critical infrastructure. **Technical Details** The articles do not provide specific technical details on attack vectors, TTPs, malware, CVEs, or IOCs related to the cyber incidents mentioned. The increase in reported events is linked to expanded reporting obligations under the NIS 2 directive rather than new attack methodologies. Noted attacks include DDoS attempts against institutional sites during the Milan Cortina Olympics, which were successfully mitigated without service disruption. **Recommended Response** Defenders should maintain heightened monitoring of telecommunications, healthcare, and manufacturing sectors, focusing on DDoS detection and mitigation capabilities. Coordination among Defence, Postal Police (CNAIPIC), intelligence agencies, and the National Cybersecurity Agency should be prioritized to address hybrid threats. No specific patching or IOCs were provided; therefore, organizations should ensure compliance with NIS 2 reporting requirements and continue to strengthen incident response and inter-agency collaboration.

Source articles (3)

  • The Director of the Cyber Frattase Agency Has Resigned, Andrea Quacivi Will Take His Place — Ground.News · 2026-05-21
    The prefect leaves the post after a little more than two years to the direction of the Acn. In his place the former CEO of the Sogei The resignation of Prefect Bruno Frattase as Director General of th…
  • Cybersecurity, Frattase Leaves the ACN: in Its Place Quacivi — www.ilfattoquotidiano.it · 2026-05-21
  • Cybersecurity changes: leaves Frattasi, in pole Quacivi — En.Ilsole24Ore · 2026-05-21
    The resignation 'for personal reasons' of prefect Bruno Frattasi as director general of the National Cybersecurity Agency arrived almost a year early on Giorgia Meloni 's desk. Frattasi had been appoi…

Timeline

  • 2023-03-09 — Bruno Frattasi appointed Director General of Acn: Frattasi took over the leadership of the National Cybersecurity Agency during a Council of Ministers meeting.
  • 2026-03-01 — 436 cyber events recorded in March 2026: The National Cybersecurity Agency reported a stable number of incidents compared to February, with a significant increase from January.
  • 2026-05-21 — Bruno Frattasi resigns from Acn: Frattasi submitted his resignation letter to the Prime Minister, citing personal reasons.

Related entities

  • DDoS (Attack Type)
  • Almaviva (Company)
  • IBM (Company)
  • Uffizi (Company)
  • Italy (Country)
  • Healthcare (Industry)
  • Manufacturing (Industry)
  • Telecommunications (Industry)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed