EU

What organizations need to know about the Digital Operational Resilience Act (DORA)

auditing, Compliance, cybersecurity, Don't miss, EU, Features, Hot stuff, Kyndryl, News, opinion, penetration testing, regulation, resilience, Risk Management /

What organizations need to know about the Digital Operational Resilience Act (DORA) 2024-03-05 at 06:31 By Mirko Zorz In this Help Net Security interview, Kris Lovejoy, Global Security and Resilience Leader at Kyndryl, discusses the impact of the Digital Operational Resilience Act (DORA) on organizations across the EU, particularly in ICT risk management and cybersecurity. […]

What organizations need to know about the Digital Operational Resilience Act (DORA) Read More »

Photos: BSidesZagreb 2024

BSidesZG, conferences, cybersecurity, EU, Europe, GitGuardian, Mandiant, News /

Photos: BSidesZagreb 2024 2024-03-04 at 05:46 By Mirko Zorz BSidesZagreb is a complimentary, non-profit conference driven by community participation, designed for information security professionals and enthusiasts to gather, exchange ideas, and collaborate. Help Net Security sponsored the 2024 edition that took place on March 1, and here are photos from the event. Bojan Ždrnja, CTO

Photos: BSidesZagreb 2024 Read More »

European retailer Pepco loses €15.5 million in phishing (possibly BEC?) attack

BEC scams, cybercrime, Don't miss, EU, Hot stuff, News, phishing /

European retailer Pepco loses €15.5 million in phishing (possibly BEC?) attack 2024-02-28 at 16:34 By Zeljka Zorz Pepco Group has confirmed that its Hungarian business has been hit by a “sophisticated fraudulent phishing attack.” The European company, which operates shops under the Pepco, Poundland and Dealz brands, said that the company lost approximately €15.5 million

European retailer Pepco loses €15.5 million in phishing (possibly BEC?) attack Read More »

Preparing for the NIS2 Directive

Compliance, cyber hygiene, cybersecurity, Don't miss, EU, Hot stuff, strategy, supply chain, Telstra Purple, Video, vulnerability management /

Preparing for the NIS2 Directive 2024-02-28 at 08:01 By Help Net Security The EU’s NIS Directive (Directive on security of network and information systems) was established to create a higher level of cybersecurity and resilience within organizations across the member states. It was updated in January 2023 to bring more organizations into scope. Companies –

Preparing for the NIS2 Directive Read More »

Meta plans to prevent disinformation and AI-generated content from influencing voters

Artificial Intelligence, disinformation, Don't miss, EU, Facebook, Hot stuff, Instagram, LLMs, Meta, News, social media, social networking, TikTok, Twitter, WhatsApp /

Meta plans to prevent disinformation and AI-generated content from influencing voters 2024-02-27 at 14:50 By Zeljka Zorz Meta, the company that owns some of the biggest social networks in use today, has explained how it means to tackle disinformation related to the upcoming EU Parliament elections, with a special emphasis on how it plans to

Meta plans to prevent disinformation and AI-generated content from influencing voters Read More »

Battery maker Varta halts production after cyberattack

cyberattack, Don't miss, EU, Germany, Hot stuff, manufacturing sector, News /

Battery maker Varta halts production after cyberattack 2024-02-15 at 14:17 By Helga Labus German battery manufacturer Varta was forced to shut down its IT systems and stop production as a result of a cyberattack. The Varta cyberattack The cyberattack occurred on Monday night and affected five of the company’s production plants and the administration. According

Battery maker Varta halts production after cyberattack Read More »

Chinese hackers breached Dutch Ministry of Defense

Don't miss, EU, Fortinet, Government, government-backed attacks, Hot stuff, Malware, News, Remote Access Trojan, vulnerability /

Chinese hackers breached Dutch Ministry of Defense 2024-02-07 at 16:46 By Helga Labus Chinese state-sponsored hackers have breached the Dutch Ministry of Defense (MOD) last year and deployed a new remote access trojan (RAT) malware to serve as a backdoor. “The effects of the intrusion were limited because the victim network was segmented from the

Chinese hackers breached Dutch Ministry of Defense Read More »

NIS2 Directive raises stakes for security leaders

cyber hygiene, cyber resilience, cyberattacks, cybersecurity, Don't miss, EU, Features, framework, Hot stuff, News, opinion, regulation, Risk Management, standards, Sumo Logic /

NIS2 Directive raises stakes for security leaders 2024-02-02 at 08:01 By Mirko Zorz In this Help Net Security interview, Roland Palmer, VP Global Operations Center at Sumo Logic, discusses key challenges and innovations of the NIS2 Directive, aiming to standardize cybersecurity practices across sectors. NIS2 mandates minimal cybersecurity requirements for member companies, encompassing policies on

NIS2 Directive raises stakes for security leaders Read More »

EU adopts first cybersecurity certification scheme for safer tech

certification, cybersecurity, ENISA, EU, Europe, framework, News /

EU adopts first cybersecurity certification scheme for safer tech 2024-02-02 at 06:33 By Help Net Security The European Commission adopted the implementing regulation concerning the EU cybersecurity certification scheme on Common Criteria (EUCC). The outcome aligns with the candidate cybersecurity certification scheme on EUCC that ENISA drafted in response to a request issued by the

EU adopts first cybersecurity certification scheme for safer tech Read More »

Threat actor used Vimeo, Ars Technica to serve second-stage malware

cybercrime, Don't miss, EU, Hot stuff, Malware, Mandiant, News, theft, USB devices /

Threat actor used Vimeo, Ars Technica to serve second-stage malware 2024-02-01 at 12:31 By Zeljka Zorz A financially motivated threat actor tracked as UNC4990 is using booby-trapped USB storage devices and malicious payloads hosted on popular websites such as Ars Technica, Vimeo, GitHub and GitLab to surreptitiously deliver malware. Another interesting detail about UNC4990 it’s

Threat actor used Vimeo, Ars Technica to serve second-stage malware Read More »

Tietoevry ransomware attack halts Swedish organizations

cyberattack, Don't miss, EU, Hot stuff, News, Ransomware /

Tietoevry ransomware attack halts Swedish organizations 2024-01-22 at 13:16 By Helga Labus Finnish IT software and service company Tietoevry has suffered a ransomware attack that affected several customers of one of its datacenters in Sweden. The attack The ransomware attack took place during the night of January 19-20. “The attack was limited to one part

Tietoevry ransomware attack halts Swedish organizations Read More »

Akira ransomware attackers are wiping NAS and tape backups

backup, Cisco, Don't miss, EU, exploit, Hot stuff, NAS, News, Ransomware, vulnerability /

Akira ransomware attackers are wiping NAS and tape backups 2024-01-12 at 16:17 By Helga Labus “The Akira ransomware malware, which was first detected in Finland in June 2023, has been particularly active at the end of the year,” the Finnish National Cybersecurity Center (NCSC-FI) has shared on Wednesday. NCSC-FI has received 12 reports of Akira

Akira ransomware attackers are wiping NAS and tape backups Read More »

Shifting data protection regulations show why businesses must put privacy at their core

Compliance, cybersecurity, data, Don't miss, EU, Expert analysis, Expert corner, framework, Hot stuff, InfoSum, News, opinion, Privacy, USA /

Shifting data protection regulations show why businesses must put privacy at their core 13/12/2023 at 08:31 By Help Net Security Like it or not, data protection will be one of the biggest issues organizations face in 2024. Knowing where to focus compliance efforts will be tricky, with more and more state-level privacy laws becoming effective

Shifting data protection regulations show why businesses must put privacy at their core Read More »

eIDAS: EU’s internet reforms will undermine a decade of advances in online security

authentication, certificates, cybersecurity, Don't miss, EU, Expert analysis, Expert corner, framework, hide.me, Hot stuff, News, opinion, Privacy, regulation /

eIDAS: EU’s internet reforms will undermine a decade of advances in online security 12/12/2023 at 08:32 By Help Net Security The European Union’s attempt to reform its electronic identification and trust services – a package of laws better known as eIDAS 2.0 – contains legislation that poses a grave threat to online privacy and security.

eIDAS: EU’s internet reforms will undermine a decade of advances in online security Read More »

Russian hackers use old Outlook vulnerability to target Polish orgs (CVE-2023-23397)

APT, cyber espionage, Don't miss, Email, EU, Hot stuff, Microsoft, Microsoft Exchange, News, Outlook, vulnerability /

Russian hackers use old Outlook vulnerability to target Polish orgs (CVE-2023-23397) 05/12/2023 at 17:47 By Helga Labus Russian state-backed hacking group Forest Blizzard (aka Fancy Bear, aka APT28) has been using a known Microsoft Outlook vulnerability (CVE-2023-23397) to target public and private entities in Poland, Polish Cyber Command has warned. Compromising email accounts and maintaining

Russian hackers use old Outlook vulnerability to target Polish orgs (CVE-2023-23397) Read More »

Slovenian power company hit by ransomware

Barrier Networks, critical infrastructure, Don't miss, energy sector, EU, Hot stuff, News, Ransomware /

Slovenian power company hit by ransomware 28/11/2023 at 18:17 By Helga Labus Slovenian power generation company Holding Slovenske Elektrarne (HSE) has been hit by ransomware and has had some of its data encrypted. The attack HSE is a state-owned company that controls numerous hydroelectric, thermal and coal-fired power plants. The company has declined to share

Slovenian power company hit by ransomware Read More »

Ukrainian ransomware gang behind high-profile attacks dismantled

cybercrime, cybercriminals, EU, Europe, Europol, Government, law enforcement, News, Ransomware, Ukraine /

Ukrainian ransomware gang behind high-profile attacks dismantled 28/11/2023 at 13:46 By Help Net Security Law enforcement and judicial authorities from seven countries have joined forces with Europol and Eurojust to dismantle and apprehend in Ukraine key figures behind significant ransomware operations. On 21 November, 30 properties were searched in the regions of Kyiv, Cherkasy, Rivne

Ukrainian ransomware gang behind high-profile attacks dismantled Read More »

NIS2 and its global ramifications

Compliance, cyber resilience, cybersecurity, Don't miss, EU, Expert analysis, Expert corner, Hot stuff, LogPoint, News, opinion, risk assessment /

NIS2 and its global ramifications 24/11/2023 at 08:31 By Help Net Security The Network and Information Systems Directive (NIS2), due to come into effect in October 2024, seeks to improve cyber resilience in the European Union (EU). Its effects are likely to be wider reaching, though, bringing in more stringent processes and controls and redefining

NIS2 and its global ramifications Read More »

Organizations rethink cybersecurity investments to meet NIS Directive requirements

cybersecurity, ENISA, EU, investment, News, report, skill development, survey, vulnerability management /

Organizations rethink cybersecurity investments to meet NIS Directive requirements 22/11/2023 at 07:07 By Help Net Security Despite a 25% increase of the cost of major cyber incidents in 2022 compared to 2021, the new report on cybersecurity investment from ENISA reveals a slight increase of 0,4% of IT budget dedicated to cybersecurity by EU operators

Organizations rethink cybersecurity investments to meet NIS Directive requirements Read More »

Photos: IRISSCON 2023

BH Consulting, Brian Honan, Check Point, Cisco, conferences, EU, Europe, Forescout, IRISSCON, News /

Photos: IRISSCON 2023 16/11/2023 at 17:16 By Zeljka Zorz IRISSCON, the annual cybercrime-themed conference organized by the Irish Reporting and Information Security Service (IRISS), was held in Dublin, Ireland, on November 16, 2023. Here’s a peak on what went down: Deryck Mitchelson, Check Point Rik Ferguson, Forescout Networking Dave Lewis, Cisco Networking Panel with Ciaran

Photos: IRISSCON 2023 Read More »

Scroll to Top