Public SectorHallucinationSearch / RAGMedium

ENISA reports AI-hallucinated sources in 2025 threat landscape reports

The EU Agency for Cybersecurity (ENISA) published two 2025 threat reports containing AI-hallucinated citations; researchers found 26 incorrect footnotes out of 492 in one report.

ENISA (EU Agency for Cybersecurity) · Incident Oct 1, 2025 · Indexed Jun 5, 2026 · 2 sources

ENISA let AI touch the one layer it should never touch unguarded: the truth layer.

Key facts

What
The EU Agency for Cybersecurity (ENISA) published two 2025 threat reports containing AI-hallucinated citations; researchers found 26 incorrect footnotes out of 492 in one report.
Incident date
Oct 1, 2025
Who
ENISA (EU Agency for Cybersecurity)
Failure mode
Hallucination
AI surface
Search / RAG
Severity
Medium

What happened

ENISA admitted that two of its 2025 threat landscape reports contained fabricated sources generated by AI. Researchers from Westfälische Hochschule found 26 incorrect footnotes out of 492 in one report. The agency stated that AI was used for minor editorial revisions, which resulted in the hallucinations.

What broke inside the model

Failure path · mode profile · Hallucination
  1. 01 · TriggerA user asks for a fact, a citation, or a figure.
  2. 02 · Model stepThe model writes a fluent, confident answer.
  3. 03 · Control gapNothing ties the claim back to a real source.
  4. 04 · FailureA fabricated fact ships as if it were verified.
  5. 05 · ConsequenceThe false claim reaches a customer, a court, or the public.

Confidence holds, and even spikes, as the claim detaches from any source.

The failure occurred because LLMs confabulated citations during the editorial process. The internal workflow lacked a mandatory human verification step or provenance check to validate the accuracy of the AI-generated references.

What it cost

Public visibilityHigh
Regulatory exposureNone
Customer impactFew customers
Financial impactUnknown
Time to disclosureMonths

Sources

  1. PressEU cybersecurity agency used AI to write reportscybernews.com
  2. PressFive times AI hallucinations embarrassed governmentsrestofworld.org

Cite this entry

Permalinkhttps://failureindex.ai/failures/enisa-hallucinated-sources-2025-threat-landscape
CitationAI Failure Index. "ENISA reports AI-hallucinated sources in 2025 threat landscape reports" (FI-0198). Realm Labs. https://failureindex.ai/failures/enisa-hallucinated-sources-2025-threat-landscape (indexed Jun 5, 2026).
Share cardA branded image of this record for posts and slides.

Data fields CC-BY 4.0, prose citation permitted. Incident ID FI-0198. Full dataset at /data.

Note from Realm Labs, the Index steward

How Realm would have caught this

Controls for this failure mode
  • Prism
  • OmniGuard
  • AI Detection & Response (AIDR)

A runtime layer that watches the model's internal state can flag the moment a model commits to a claim it has no support for, and hold or reroute the response before it reaches a user. Realm reads those signals in real time rather than grading the transcript after the fact.

Book a Demo

Related failures

Other records that share this failure mode (Hallucination) or industry (Public Sector).

FI-0501Cross-industryMedium
Hallucination

KPMG pulls AI report after organizations dispute claims

KPMG withdrew its "Total Experience: Redefining Excellence in the Age of Agentic AI" report after several organizations stated the claims about their AI usage were untrue. Research by GPTZero revealed that the majority of the report's citations were AI-generated hallucinations.

Confidence
High (multi-source, primary)
KPMG3 sourcesPrimaryPublicJun 2026
FI-0579Legal ServicesMedium
Hallucination

Law Society of Ontario lawyer fined 31,150 CAD for Grok hallucinations

A lawyer was ordered to pay 31,150 CAD in adverse costs after using Grok to file fabricated legal authorities in a Canadian tribunal case. The incident demonstrates the risks of relying on AI for legal research without manual verification.

Confidence
High (multi-source, primary)
Law Society of Ontario2 sourcesPrimaryPublicJun 2026
FI-0587Public SectorLow
Hallucination

Procureur général du Canada sanctioned pro se litigant for AI fabricated case law

A self-represented litigant in Canada was sanctioned by the Federal Court for submitting fabricated case law generated by AI. The court emphasized that citing non-existent sources is a serious matter that undermines the administration of justice.

Confidence
High (multi-source, primary)
Procureur général du Canada3 sourcesCourt FilingPublicJun 2026