EuRepoC data
EuRepoC database
Our data is consistently updated as new information about cyber incidents emerges. Consequently, coded data about specific incidents may change over time. To ensure reproducibility of analyses, we provide ‘static’ versions of our datasets extracted at different intervals. These can be downloaded directly from this page. Please note that because our database is regularly updated, these static datasets may not reflect the most current information displayed on the dashboard. For the latest (but not fully expert-reviewed) data, please use the download button in our TableView.
Structure of the data files
The Global Dataset of Cyber Incidents comes in four different variants:
Main dataset
This file includes all variables coded for each incident, organised such that one row corresponds to one incident - our main unit of investigation. Where multiple codes are present for a single variable for a single incident, these are separated with semi-colons within the same cell.
Receiver dataset
In this file or sheet, the data of affected entities and individuals (receivers) is restructured to facilitate analysis. Each cell contains only a single code, with the data "unpacked" across multiple rows. Thus, a single incident can span several rows, identifiable through the unique identifier assigned to each incident.
Attribution dataset
This sheet or file follows a similar approach to the receiver dataset. The attribution data is "unpacked" over several rows, allowing each cell to contain only one code. Here too, a single incident may occupy several rows, with the unique identifier enabling easy tracking of each incident.
Dyadic dataset
The dyadic dataset puts state dyads in the focus. Each row in the dataset represents one cyber incident in a specific dyad. Because incidents may affect multiple receivers, single incidents can be duplicated in this format, when they affected multiple countries. It is simplified to answer the question "who did what to whom, and how bad was it?"
Download data files
Citation:
EU Cyber Diplomacy Toolbox Dataset
This dataset is the first to address the application of the EU’s cyber diplomacy toolbox (CDT) by EU institutions/actors since 2017 until the end of May 2023. Based on this, the related research paper highlights trends, patterns, and anomalies in previous usage that can be identified and analysed in the respective political context. The publication is complemented by insights from the European Repository of Cyber Incidents (EuRepoC) to evaluate the intended impact of the measures in a more detailed manner.
Download data files
HD-CY.CON database
As a predecessor project of EuRepoC, a separate cyber conflict dataset, HD-CY.CON Global Database 1.0, was created at Heidelberg University from 2019 to 2021. This dataset, spanning 2000 to 2019, formed the basis for EuRepoC and was refined and extended in terms of the coding scheme applied. This was achieved particularly through the strengthened interdisciplinarity of the coding manual and the increased automated data collection and processing.