Submarine cables: the Achilles heel of European digital sovereignty

6. mája 2026

Roughly 99 % of the world's intercontinental digital communication does not travel through satellites. It travels through a network of approximately 600 submarine fibre-optic cables with a combined length of 1.4 million kilometres, lying on the floor of the world's oceans. Through these cables flow more than 10 trillion US dollars in financial transactions every day, the bulk of email and cloud traffic, and almost all international internet traffic. They are the physical rope on which the digital economy hangs.

For critical infrastructure, submarine cables are a paradox. They are its technological backbone and at the same time its most exposed point. And for Slovakia, a landlocked state with no maritime ports of its own, they represent a strategic risk that remains insufficiently present in the national discussion.


Anatomy of vulnerability


A fibre-optic cable with the diameter of a garden hose carries capacity in the order of tens of terabits per second. It is protected by several layers of steel and polyethylene, but in the open sea at depths greater than 2,000 metres, to save costs, it is laid bare on the seabed without sediment cover. In the shallower waters of continental shelves, where the highest number of damages occurs, the cable is typically buried 1 to 3 metres below the seafloor.


Globally, there are approximately 150 to 200 submarine cable disruptions every year. Roughly two thirds are caused by fishing trawls and the anchors of commercial vessels, another quarter by natural events such as underwater landslides, earthquakes, and storms. The remainder, consistently around 5 to 10 %, comprises incidents that cannot be unambiguously classified. It is precisely this category that has, in recent years, become a geopolitical category.


Timeline of Baltic incidents


Europe's northern seas have turned into a laboratory of hybrid activity. In October 2023, the BalticConnector gas pipeline between Finland and Estonia was severed in the Baltic Sea, together with several telecommunications cables. The investigation showed that the cause was the heavy anchor of the Chinese vessel Newnew Polar Bear, which dragged it along the seabed for more than 180 kilometres. The ship left the Baltic before it could be detained, and meaningful assistance from China in the subsequent investigation was effectively unavailable.


In November 2024, the C-Lion1 telecommunications cable between Finland and Germany and the BCS East-West cable between Lithuania and Sweden were severed. At the time of the incident, the Chinese vessel Yi Peng 3 was passing over the damaged sections, dragging its anchor along the seabed for more than 100 miles. In December 2024, the Estlink-2 power interconnector between Finland and Estonia and four telecommunications cables were severed. The vessel responsible was the tanker Eagle S, part of the so-called Russian shadow fleet, transporting sanctioned oil. Finnish authorities detained the ship — a regional precedent.


In the Red Sea, the severing of three cables in February 2024 was caused by the anchor of the Rubymar after it was struck by a Houthi missile. In the Taiwan Strait, more than 30 cables leading to the Matsu Islands were severed between 2023 and 2024, which Taiwan classifies as deliberate "grey-zone" activity by Chinese coastal vessels.


The political and regulatory response of the EU


In response to the Baltic events, the European Commission published the EU Cable Security Action Plan in February 2025. The action plan rests on four pillars: prevention (mapping of dependencies, redundancy of routes), detection (continuous monitoring of subsea activity, combining AIS, sonar, and satellite data), response (rapid repair capacities, coordination among Member States), and deterrence (incident attribution, sanctions regimes, legal instruments against shadow-fleet vessels). The plan rests on the CER Directive (2022/2557) and the NIS2 Directive (2022/2555), which classify submarine cables as part of digital and energy critical infrastructure.


In May 2024, NATO established a Maritime Centre for the Security of Critical Undersea Infrastructure within its Maritime Command in Northwood. In January 2025, the Alliance launched Operation Baltic Sentry, a long-term monitoring effort along Baltic shipping lanes combining frigates, helicopters, and underwater drones. This represents a fundamental shift in the perception of subsea infrastructure as a military and political priority.


The Slovak dimension


Slovakia is not a coastal state, and the topic of submarine cables is therefore often perceived as distant. This impression is misleading. All of Slovakia's international internet traffic passes through landing stations in Hamburg, Frankfurt, Marseille, and to a lesser extent in Polish and Croatian ports. The resilience of the Slovak digital ecosystem is therefore directly dependent on the physical security of cables along coastlines that lie hundreds of kilometres from Slovak borders.


Slovak banks use the international payment systems SWIFT and TARGET2, Slovak businesses access cloud services in data centres in Ireland, the Netherlands, and Germany, and Slovak public administration uses federated European services. Each of these dependencies passes, at some point, through a submarine cable.


In the terminology of Act No. 367/2024 on Critical Infrastructure, this is an external cascading dependency, categorically different from domestic critical assets. The Slovak operator cannot directly influence it, but must identify, assess, and mitigate it. This is the purpose of the dependency-mapping requirement that the Act imposes as one of the key obligations of critical entities.


Structural risks rarely highlighted


Three vulnerabilities remain insufficiently named in the current European discussion.


First, repair capacity. Globally, there are only approximately 60 specialised vessels for submarine cable repairs. Most are in the hands of private operators, and their deployment can take weeks. In a scenario of coordinated damage to multiple cables, this capacity would be quickly exhausted.


Second, manufacturing concentration. The submarine cable manufacturing market is dominated by four players: French Alcatel Submarine Networks, American SubCom, Japanese NEC, and Chinese HMN Technologies (formerly Huawei Marine). The European industrial shift toward diversification is progressing slowly.


Third, real-time identification of suspicious vessels. The shadow fleet operates with disabled or manipulated AIS transponders, avoids standard shipping routes, and often changes flag of registration. Recognising an "anchor-dragging" vessel before it severs a cable is a technically and legally demanding task.


Strategic outlook


Submarine cables bring together three trends that will define the security of critical infrastructure over the next decade. The first is the hybrid activity of state actors operating in the zone below the threshold of armed conflict. The second is the geographic interdependence of critical infrastructure, where national sovereignty is exercised through assets physically located outside the territory of the state. The third is the crisis of attribution, where the technical capacity to provide proof lags behind the speed of events and the political need to respond.


For AKI SR, the topic of submarine cables is a textbook case of why Act No. 367/2024 does not stop at domestic assets and requires cross-border mapping of dependencies. For operators in the digital infrastructure, financial, energy, and public administration sectors, it means the need to include the risk of disruption to international connectivity among the scenarios for testing operational continuity.


"Submarine cables are a geographic reminder that digital sovereignty has a physical dimension. Slovakia cannot pretend that the problem begins and ends at our borders. The security of network nodes in Hamburg and Marseille is today part of the security of the Slovak payment system and Slovak public administration. This opens up a new category of strategic cooperation within the EU and NATO that our discussion on critical infrastructure is only beginning to fully reflect," concludes Ing. Tibor Straka, President of AKI SR.


It has long held true in the history of critical infrastructure that the most vulnerable systems are the ones we depend on the most and see the least. Submarine cables are, in this sense, perfect critical infrastructure. And precisely for that reason, they deserve to stand at the centre, not at the margin, of the security debate.

Podmorské káble: Achillova päta európskej digitálnej suverenity

6. mája 2026
Asi 99 % medzikontinentálnej digitálnej komunikácie sveta neprebieha cez satelity. Prebieha cez sieť približne 600 podmorských optických káblov s celkovou dĺžkou 1,4 milióna kilometrov, ktoré ležia na dne svetových oceánov. Cez tieto káble každý deň pretečú finančné transakcie v hodnote viac ako 10 biliónov amerických dolárov, väčšina e-mailovej a cloudovej komunikácie a takmer celá medzinárodná internetová prevádzka. Sú to fyzické laná, na ktorých drží digitálna ekonomika.

Stanovisko Asociácie kritickej infraštruktúry SR Reakcia na článok Denníka E z 30. apríla 2026

1. mája 2026
Asociácia kritickej infraštruktúry SR (ďalej len „asociácia") považuje za potrebné reagovať na článok publikovaný v Denníku E, ktorý vo viacerých bodoch nepresne interpretuje činnosť asociácie, jej členskú základňu, ako aj povahu projektov realizovaných niektorými členskými subjektmi. Nižšie uvádzame vecné stanovisko k jednotlivým tvrdeniam.

Introducing the sectors of critical infrastructure: Finance

30. apríla 2026
The area of critical infrastructure in the Slovak Republic is regulated by Act No. 367/2024 Coll. on Critical Infrastructure and on the Amendment and Supplementation of Certain Acts, which defines the individual sectors, sub-sectors and essential services necessary for the functioning of the state. The Critical Infrastructure Association of the Slovak Republic gradually presents the individual sectors with the aim of bringing closer their importance, their functioning and their impacts on the everyday life of society. This time we focus on the finance sector.

Predstavujeme sektory kritickej infraštruktúry: Financie

30. apríla 2026
Oblasť kritickej infraštruktúry v Slovenskej republike upravuje zákon č. 367/2024 Z. z. o kritickej infraštruktúre a o zmene a doplnení niektorých zákonov, ktorý definuje jednotlivé sektory, podsektory a základné služby nevyhnutné pre fungovanie štátu. Asociácia kritickej infraštruktúry Slovenskej republiky postupne predstavuje jednotlivé sektory s cieľom priblížiť ich význam, fungovanie a dopady na každodenný život spoločnosti. Tentokrát sa zameriame na sektor financií .

From a Vilnius Warehouse to the Leipzig DHL Ramp: A Trial That Is Changing the View on the Protection of European Logistics Infrastructure

29. apríla 2026
On 17 April 2026, a trial began at the District Court in Vilnius that is shifting the European debate on the protection of critical infrastructure from the technical level to a very concrete one. Five men are charged with sending, in July 2024, in cooperation with the Special Tasks Department of the Russian military intelligence service GRU, incendiary parcels via DHL and DPD from Vilnius to the air hub in Leipzig, to Poland and to the United Kingdom. The head of the German counter-intelligence service BfV stated that only a flight delay prevented an in-flight detonation that could have destroyed a cargo aircraft. 

Z vilniuského skladu na rampu lipského DHL: proces, ktorý mení pohľad na ochranu európskej logistickej infraštruktúry

29. apríla 2026
Na Okresnom súde vo Vilniuse sa 17. apríla 2026 začal proces, ktorý posúva európsku diskusiu o ochrane kritickej infraštruktúry z roviny technickej do roviny veľmi konkrétnej. Päť mužov je obvinených z toho, že v júli 2024 v spolupráci s Oddelením špeciálnych úloh ruskej vojenskej spravodajskej služby GRU posielali zápalné zásielky cez DHL a DPD z Vilniusu do leteckého uzla v Lipsku, do Poľska a do Veľkej Británie. Šéf nemeckej kontrarozviedky BfV uviedol, že len omeškanie letu zabránilo detonácii vo vzduchu, ktorá mohla zničiť dopravné lietadlo.

Cyber Resilience Act enters the operational phase: what was said at KYBER2026 and what Slovakia must complete before 11 September 2026

28. apríla 2026
The KYBER2026 conference of the National Security Authority and SK-CERT, held on 27 and 28 April 2026 at Hotel Sitno Vyhne, confirmed what operators of essential services and critical entities had already suspected since the beginning of the year. 2026 is not a year of preparation — it is a year of demonstrable functionality. At the centre stands Regulation (EU) 2024/2847 of the European Parliament and of the Council on cyber resilience, which reaches its first hard milestone on 11 September 2026: mandatory reporting of actively exploited vulnerabilities and significant incidents through ENISA's Single Reporting Platform.

Cyber Resilience Act vstupuje do prevádzkovej fázy: čo zaznelo na KYBER2026 a čo musí Slovensko stihnúť do 11. septembra 2026

28. apríla 2026
Konferencia KYBER2026 Národného bezpečnostného úradu a SK-CERT, ktorá sa konala 27. a 28. apríla 2026 v hoteli Sitno Vyhne, potvrdila to, čo prevádzkovatelia základných služieb a kritických subjektov tušili už od začiatku roka. Rok 2026 nie je rokom prípravy, ale rokom preukázateľnej funkčnosti. V centre stojí nariadenie Európskeho parlamentu a Rady číslo 2024/2847 o kybernetickej odolnosti, ktoré dosiahne 11. septembra 2026 prvý ostrý míľnik, povinné hlásenie aktívne zneužívaných zraniteľností a závažných incidentov cez Single Reporting Platform agentúry ENISA.

Memorandum between the Critical Infrastructure Association of the SR and Slovak Investment Holding opens space for sustainable investments in critical infrastructure

24. apríla 2026
The Critical Infrastructure Association of the Slovak Republic (AKI SR) and Slovak Investment Holding, a. s. concluded a memorandum of cooperation on 23 April 2026, the aim of which is to create a framework for the support of investments and the financing of projects in the field of critical infrastructure in Slovakia. The memorandum confirms the shared interest of both parties in developing strategic, developmental and innovation projects with a focus on increasing the resilience of critical infrastructure and securing essential services. The cooperation will concentrate in particular on the identification of suitable projects, the exchange of expert knowledge, as well as the interconnection of public and private sources of financing. An important part of the cooperation is also the use of expert capacities and practical experience in the preparation and implementation of projects, in particular in the areas of infrastructure and innovation. “We see room for projects that will have a long-term impact and, at the same time, financial sustainability. In areas of public interest, such as critical infrastructure or innovation, we can bring knowledge of the environment, the identification of projects and the interconnection of partners, so that high-quality and feasible solutions come into being,” stated Tibor Straka, President of AKI SR. According to his words, it is crucial that the cooperation brings concrete results: “It is important for us that this cooperation is sustainable in the long term and brings measurable results that will have a real benefit for Slovak critical infrastructure.” At the same time, the memorandum creates space for systematic expert cooperation, consultations and further joint activities aimed at the support of investments and the development of critical infrastructure. Both parties declare their interest in actively participating in projects that will contribute to the modernisation of infrastructure, the more efficient use of resources and the strengthening of the investment environment in Slovakia.

Memorandum medzi Asociáciou kritickej infraštruktúry SR a Slovak Investment Holding otvára priestor pre udržateľné investície do kritickej infraštruktúry

24. apríla 2026
Asociácia kritickej infraštruktúry Slovenskej republiky (AKI SR) a Slovak Investment Holding, a. s. uzavreli 23. apríla 2026 memorandum o spolupráci, ktorého cieľom je vytvoriť rámec pre podporu investícií a financovanie projektov v oblasti kritickej infraštruktúry na Slovensku. Memorandum potvrdzuje spoločný záujem oboch strán rozvíjať strategické, rozvojové a inovačné projekty so zameraním na zvýšenie odolnosti kritickej infraštruktúry a zabezpečenie základných služieb. Spolupráca sa bude sústreďovať najmä na identifikáciu vhodných projektov, výmenu odborných poznatkov, ako aj prepájanie verejných a súkromných zdrojov financovania. Dôležitou súčasťou spolupráce je aj využitie odborných kapacít a praktických skúseností pri príprave a realizácii projektov, najmä v oblastiach infraštruktúry a inovácií. „ Vidíme priestor pre projekty, ktoré budú mať dlhodobý dopad a zároveň finančnú udržateľnosť. V oblastiach verejného záujmu, ako sú kritická infraštruktúra či inovácie, vieme priniesť znalosť prostredia, identifikáciu projektov a prepájanie partnerov tak, aby vznikali kvalitné a realizovateľné riešenia,“ uviedol prezident AKI SR Tibor Straka. Podľa jeho slov je kľúčové, aby spolupráca prinášala konkrétne výsledky: „Je pre nás dôležité, aby táto spolupráca bola dlhodobo udržateľná a prinášala merateľné výsledky, ktoré budú mať reálny prínos pre slovenskú kritickú infraštruktúru.“  Memorandum zároveň vytvára priestor pre systematickú odbornú spoluprácu, konzultácie a ďalšie spoločné aktivity zamerané na podporu investícií a rozvoj kritickej infraštruktúry. Obe strany deklarujú záujem aktívne sa podieľať na projektoch, ktoré prispejú k modernizácii infraštruktúry, efektívnejšiemu využívaniu zdrojov a posilneniu investičného prostredia na Slovensku.