20 matches found
Insights from Talos IR: Navigating NIS2 technical implementation
When the NIS2 Directive arrived in 2023, organizations across Europe began preparing for enhanced cybersecurity requirements. Many focused on obligations such as rapid incident notifications and comprehensive security policies. However, while the directive provided the "what," it left the "how"...
The Dynamic DoS Threat
ENISA Report Unveils a Complex Cyber Landscape...
Ransomware gunning for transport sector's OT systems next
ENISA the European Union Agency for Cybersecurity has reason to believe that ransomware gangs will begin targeting transportation operational technology OT systems in the foreseeable future. This finding is further explored in the agency's 50-page report entitled ENISA Threat Landscape: Transport...
Cyber Signals: 3 strategies for protection against ransomware
The “as a service” business model has gained widespread popularity as growing cloud adoption has made it possible for people to access important services through third-party providers. Given the convenience and agility of service offerings, perhaps it shouldn’t be surprising that the “as a servic...
IoT Botnets Fuel DDoS Attacks – Are You Prepared?
While data breaches and ransomware are still considered among the more significant concern for businesses, the threats sometimes come from a direction we weren’t expecting. Cybercriminals use botnets for various malicious purposes, most significantly for DDoS attacks against targets. The most...
The winding road to compliance
“Here are the keys. Buy milk and bread. Drive safely.” These are important instructions for a new driver tasked with running an errand. But unless the driver knows where they are going, a bit of guidance on how to get to the store can only help. Without it, the driver may complete the errand...
NIST Releases Updated Cybersecurity Guidance for Managing Supply Chain Risks
The National Institute of Standards and Technology NIST on Thursday released an updated cybersecurity guidance for managing risks in the supply chain, as it increasingly emerges as a lucrative attack vector. "It encourages organizations to consider the vulnerabilities not only of a finished produ...
Most supply chain attacks target supplier’s code—ENISA
The agency also reported that attacks on the supply chain have grown in number and become more sophisticated. Sixty-two percent of the attacks were also done using malware, requiring enterprises to future-proof their security...
ENISA says System Failure is on the Rise
The agency’s latest reports said that system failure comprises more than half of telecom incidents for 2020. Sixty-nine percent of incidents also affected the qualified trust services during the same year...
IoT Security Regulation is on the Horizon
LONDON, UK – Internet of things IoT device security continues to worry the tech industry – however, experts believe that the right type of global regulation could be key for ensuring security standards. The question is when those regulatory efforts will be fleshed out. Ken Munro, with Pen Test...
Speaking at TEDx
I was privileged enough to be invited to speak at a TEDx event in Dornbirn, Austria. I speak at 2-3 events per week, with audiences from 25-2500 people, so why did this one make me nervous? I don’t get nervous before speaking in public. Lots of practice and plenty of material to work with usually...
EU Struggles to Determine Growing Cost of Cyberattacks
After painstakingly calculating the true cost of cybercrime in the European Union researchers conclude it’s nearly impossible to come up with hard numbers. In a study released this week by the European Union Agency For Network And Information Security ENISA researchers assert that it’s vitally...
ENISA Outlines Security Regulations for EU Smart Grid Expansion
The European Union has set a series of ambitious goals for itself: by 2020, the 27 member states expect to collectively use 20 percent renewable energy, reduce CO2 emissions by 20 percent, and increase energy efficiency by 20 percent. In order to accomplish these goals, Europe will need to perfor...
Cyber Security Alliance Launches Trend Spotting Project
A new international cyber security alliance announced plans to put the Continents best heads together to try to envision future cyber security trends. The International Cyber Security Protection Alliance ICSPA, a British organization that helps support law enforcement cyber crime units, announced...
Face to Face with Duqu malware
Face to Face with Duqu malware Once again we discuss about Stuxnet, cyber weapons and of the malware that appears derivate from the dangerous virus. The international scientific community has defined a Stuxnet deadly weapon because been designed with a detailed analysis of final target environmen...
First Ever Joint EU-US Cyber War Game Starts
Despite extreme upheaval and rampant infighting caused by the European debt crisis, the EU and U.S. are banding together today in Brussels and shifting its focus toward cyber security. The European Network and Information Security Agency ENISA and the U.S. Department of Homeland Security will be...
Europe's Cybersecurity Agency Gears Up for War on Botnets !
The European Network and Information Security Agency ENISA, Europe's Cyber security agency, issued a report focused on botnets this week titled, "Botnets: Measurement, Detection, Disinfection and Defence." The report discusses the reliability of botnet size estimates and provides recommendations...
Europe prepares for war with botnets !
EU cyber security agency ENISA has warned that ISPs, end users and governments all have a role to play in stopping the global menace of botnet-related cyber crime. Botnets, such as the one that uses the infamous Zeus malware to infect machines, are growing in scope and scale, and ENISA has releas...
Hackers will not be deterred by UK cyber defences !
Military "cyber weaponry" will become commonplace this century, but it will be unlikely to deter attacks by "hacktivists" and criminal gangs, and could easily be used for state-sponsored cyber attacks instead, the Organisation for Economic Co-operation and Development warns. The British authors o...
EU Agency Says Stuxnet Portends Future Sophisticated Attacks
The European agency responsible for protecting the critical infrastructure of EU countries is warning its member states that the Stuxnet attack represents a major change in the malware landscape and that they should be prepared for further attacks with the same level of sophistication and...