Swiss Post Cybersecurity publishes its inaugural Swiss Threat Landscape Report `[SINGLE-SOURCE]`

Swiss Post Cybersecurity released its first Swiss Threat Landscape Report on 2026-06-23, presented at its Hack'Events conference, drawing on the firm's own SOC, incident-response and offensive-security engagement data rather than global aggregates (Swiss Post Cybersecurity, 2026-06-23). It names phishing, identity-based attacks (credential stuffing, account takeover, MFA-bypass chains) and AI-enabled threats as the dominant categories seen in Swiss incident intake, and argues the governance centre of gravity has moved from prevention to detection, response and recovery. [SINGLE-SOURCE] and vendor-authored, so the top-line categories are not novel; the value for a Swiss SOC is that the ranking is grounded in domestic operational data, which supports weighting identity-layer telemetry (Entra ID / AD sign-in logs, OAuth token-grant anomalies, MFA-fatigue patterns — T1621) and AI-assisted-phishing detection that leans on header/anomaly scoring rather than content heuristics (T1566.001). The full report is registration-gated (see § 7).