ESAs Publish First DORA Major ICT Incident Report
The European Supervisory Authorities published their first report on major ICT-related incidents under the Digital Operational Resilience Act, giving banks, insurers, investment firms and market infrastructure operators an early benchmark for how supervisors are tracking technology disruptions.
The report covers major ICT-related incidents reported in 2025 and is part of the DORA framework that applies across EU financial services. For trading firms and brokers, the practical issue is not just cyber security. DORA turns outages, third-party technology failures and operational incidents into supervisory data that can be compared across the sector.
The ESAs said the report is based on incident information collected from financial entities and national competent authorities. It sits alongside the broader DORA push for stronger incident classification, reporting and oversight of critical ICT third-party providers.
Why it matters
Execution quality now depends heavily on platform uptime, data feeds, mobile apps, cloud providers and outsourced technology stacks. A broker can have competitive pricing and still fail traders if incident controls, escalation paths or client communication are weak during volatile sessions.
As DORA reporting matures, EU-authorised firms should expect supervisors to compare incident frequency, root causes and remediation quality. Traders should watch whether brokers disclose outages more consistently and whether firms invest in resilience instead of treating technology risk as back-office plumbing.
What to watch next
Watch for follow-up ESA analysis as more DORA incident data arrives, and for national regulators to use the report when examining broker outage handling, vendor risk controls and incident communication practices.