Ukraine can now tap EU cyber support during major attacks 2026-06-17 at 11:47 By Anamarija Pogorelec Ukraine can now call on emergency cyber support from the European Union during large-scale cybersecurity incidents. The move follows a decision by the Council of the European Union to add the country to the EU Cybersecurity Reserve. The Reserve […]
Ukraine can now tap EU cyber support during major attacks Read More »
Software supply chains are heading for a transparency test 2026-06-16 at 12:24 By Anamarija Pogorelec Software supply chain visibility is becoming part of product security work as the EU Cyber Resilience Act (CRA) moves toward application in December 2027. ENISA’s SBOM Adoption State of Play 2026 shows organizations preparing for CRA obligations through SBOM tooling,
Software supply chains are heading for a transparency test Read More »
NIST admits defeat on NVD backlog, will enrich only highest-risk CVEs going forward 2026-04-16 at 19:48 By Zeljka Zorz NIST is overhauling how it manages the National Vulnerability Database (NVD) and switching to a risk-based model that prioritizes “enrichment” of only the most critical CVE-numbered security vulnerabilities. “This change is driven by a surge in
NIST admits defeat on NVD backlog, will enrich only highest-risk CVEs going forward Read More »
EU cybersecurity standards are at risk if supplier ban passes 2026-04-16 at 10:16 By Mirko Zorz Today, the European standards body ETSI sent a formal position paper to the European Commission, calling for changes to the proposed Cybersecurity Act 2 (CSA2), the EU’s planned revision to its existing cybersecurity certification framework. The paper focuses on
EU cybersecurity standards are at risk if supplier ban passes Read More »
Coordinated vulnerability disclosure is now an EU obligation, but cultural change takes time 2026-04-15 at 10:02 By Mirko Zorz In this Help Net Security interview, Nuno Rodrigues Carvalho, Head of Sector for Incident and Vulnerability Services at ENISA, discusses the recent CVE funding scare and what it exposed about the fragility of global vulnerability disclosure
Malware detectors trained on one dataset often stumble on another 2026-04-01 at 07:05 By Anamarija Pogorelec Machine learning models built to catch malware on Windows systems are typically evaluated on data that closely resembles their training set. In practice, the malware arriving on enterprise endpoints looks different, comes from different sources, and in many cases
Malware detectors trained on one dataset often stumble on another Read More »
ENISA advisory examines package manager security risks 2026-03-12 at 15:24 By Anamarija Pogorelec Developers install external libraries with a single command, and that step can introduce more code than expected into a project environment. Dependency resolution inside package managers extends software supply chains across large collections of external components. ENISA’s Technical Advisory for Secure Use
ENISA advisory examines package manager security risks Read More »
EU tightens cybersecurity rules for tech supply chains 2026-01-21 at 17:24 By Anamarija Pogorelec The European Commission has proposed a new cybersecurity package aimed at strengthening the EU’s cyber resilience, including a revised EU Cybersecurity Act designed to secure ICT supply chains and ensure products reaching EU citizens are secure by design through a streamlined
EU tightens cybersecurity rules for tech supply chains Read More »
Many Attacks Aimed at EU Targeted OT, Says Cybersecurity Agency 2025-10-02 at 17:23 By Eduard Kovacs ENISA has published its 2025 Threat Landscape report, highlighting some of the attacks aimed at OT systems. The post Many Attacks Aimed at EU Targeted OT, Says Cybersecurity Agency appeared first on SecurityWeek. This article is an excerpt from
Many Attacks Aimed at EU Targeted OT, Says Cybersecurity Agency Read More »
EU launches EU-based, privacy-focused DNS resolution service 2025-06-09 at 17:38 By Zeljka Zorz DNS4EU, an EU-based DNS resolution service created to strengthen European Union’s digital sovereignty, has become reality. What is DNS? The Domain Name System (DNS) “translates” human-readable domain names into IP addresses and back, and is essential for accessing websites. Most users use
EU launches EU-based, privacy-focused DNS resolution service Read More »
EU Cybersecurity Agency ENISA Launches European Vulnerability Database 2025-05-14 at 15:02 By Eduard Kovacs Experts say the European Vulnerability Database, or EUVD, should be a good resource, but only if ENISA manages to maintain it properly. The post EU Cybersecurity Agency ENISA Launches European Vulnerability Database appeared first on SecurityWeek. This article is an excerpt
EU Cybersecurity Agency ENISA Launches European Vulnerability Database Read More »
European Vulnerability Database goes live, but who benefits? 2025-05-14 at 07:20 By Mirko Zorz The European Union Agency for Cybersecurity (ENISA) has unveiled the European Vulnerability Database (EUVD), an initiative under the NIS2 Directive aimed at enhancing digital security across the EU. The database serves as a centralized repository offering aggregated and actionable information on
European Vulnerability Database goes live, but who benefits? Read More »
EU adopts first cybersecurity certification scheme for safer tech 2024-02-02 at 06:33 By Help Net Security The European Commission adopted the implementing regulation concerning the EU cybersecurity certification scheme on Common Criteria (EUCC). The outcome aligns with the candidate cybersecurity certification scheme on EUCC that ENISA drafted in response to a request issued by the
EU adopts first cybersecurity certification scheme for safer tech Read More »
Key cybersecurity skills gap statistics you should be aware of 2024-01-02 at 07:31 By Help Net Security As the sophistication and frequency of cyber threats continue to escalate, the demand for skilled cybersecurity professionals has never been bigger. The skills gap is not merely a statistical discrepancy; it represents a substantial vulnerability in the defense
Key cybersecurity skills gap statistics you should be aware of Read More »
Organizations rethink cybersecurity investments to meet NIS Directive requirements 22/11/2023 at 07:07 By Help Net Security Despite a 25% increase of the cost of major cyber incidents in 2022 compared to 2021, the new report on cybersecurity investment from ENISA reveals a slight increase of 0,4% of IT budget dedicated to cybersecurity by EU operators
Organizations rethink cybersecurity investments to meet NIS Directive requirements Read More »
As biohacking evolves, how vulnerable are we to cyber threats? 12/10/2023 at 07:01 By Help Net Security Can our bodies be hacked? The answer may be yes, in that anyone can implant a chip under the skin and these devices do not usually use secure technologies, according to Entelgy. However, despite more than a decade
As biohacking evolves, how vulnerable are we to cyber threats? Read More »
Hidden dangers loom for subsea cables, the invisible infrastructure of the internet 21/09/2023 at 06:32 By Help Net Security More than 97% of the world’s internet traffic passes through subsea cables at some point, according to ENISA. Subsea cables are a vital component of the global internet infrastructure, and it is critical to protect them
Hidden dangers loom for subsea cables, the invisible infrastructure of the internet Read More »
How EU lawmakers can make mandatory vulnerability disclosure responsible 21/08/2023 at 07:33 By Help Net Security There is a standard playbook and best practice for when an organization discovers or is notified about a software vulnerability: The organization works quickly to fix the problem and, once a fix is available, discloses that vulnerability for the
How EU lawmakers can make mandatory vulnerability disclosure responsible Read More »
Unraveling the multifaceted threats facing telecom companies 22/06/2023 at 07:09 By Mirko Zorz In today’s interconnected world, telecom companies serve as gateways, connecting individuals, businesses, and governments. However, this role also makes them prime targets for cyberattacks. From DDoS attacks to sophisticated spyware infiltration, telecom providers face a wide range of threats that can disrupt
Unraveling the multifaceted threats facing telecom companies Read More »