Regulation 2023/2841, the Cybersecurity Regulation for Union entities, entered into force on 7 January 2024. A year later, the Interinstitutional Cybersecurity Board (IICB) releases its Annual Report. It is a very interesting read.
Despite recent concerns, the CVE program remains stable. Ongoing initiatives aim to strengthen its future and address key challenges in vulnerability management.
We have just released an updated version of our DDoS whitepaper. This comprehensive resource offers in-depth analysis, expert recommendations, real-world case studies, and step-by-step response strategies to help you understand and defend against DDoS attacks.
Today we are delighted to introduce Morio, an end-to-end streaming data backbone designed to meet your observability needs.
On the occasion of the 36th annual FIRST conference, we are excited to announce the release of droid, a tool designed to enhance management of detection rules by taking advantage of Sigma
We are thrilled to announce that the EU has just taken a big step - a step that will boost the overall cybersecurity resilience of all Union entities
Dive into our latest website upgrades, from category-specific RSS feeds to direct on-site reading and enhanced download options, ensuring a streamlined and secure cybersecurity reading experience.
In the Q3 2023 edition of our quarterly Threat Landscape Reports, we keep focusing on on attacks targeting EU institutions, bodies, and agencies (EUIBAs) or their vicinity.
In the Q2 2023 edition of our quarterly Threat Landscape Reports, we keep focusing on on attacks targeting EU institutions, bodies, and agencies (EUIBAs) or their vicinity.
We have introduced several notable changes in the latest edition of the exec summary of our quarterly CTI reports. We are now focusing solely on threats to EUIBAs, to share unique info you don't get from other sources. And we have changed its format.
It's here, it's powerful, and it's shaping our future. Generative Artificial Intelligence (AI) - a technology that is as promising as it is provocative. In a position paper we are publishing today - available as CERT-EU Security Guidance 23-002 - we dived headfirst into the labyrinth of this fascinating and sometimes fearsome frontier.
We have been monitoring the cyber aspects of Russia's war on Ukraine since January 2022, when the conflict was brewing up. We observed the global cyber landscape, to anticipate if and how cyber operations would target EU institutions, bodies, and agencies and other organisations. We created a dedicated report to showcase this work.
The European Union Agency for Cybersecurity (ENISA) and the CERT of all the EU institutions, bodies and agencies (CERT-EU) jointly published a report today, to alert on sustained activity by particular threat actors. The malicious cyber activities of the presented threat actors pose a significant and ongoing threat to the European Union.
The European Cybersecurity Month (ECSM) is the biggest cyber awareness campaign in Europe. This year, we celebrate its ten years or existence. So let's make this important anniversary count!
We introduce the Traffic Light Protocol (TLP) and explain how we use it at CERT-EU. Then we demonstrate the similarities and differences between version 1 and the new version 2, which FIRST announced in August 2022.
We are glad to announce a new, improved version of the Cyber Brief, our monthly report which provides a carefully selected set of publicly known cybersecurity events.
While our old website gave us a public presence and a space where we could share our publications, it used a design that was all the rage in the 1990s, when Mosaic was the best browser of its time. It took us some time but we are finally embracing modernity. So say hi to our new website!
Committed to the Union cybersecurity cause, CERT-EU participated in the real-life scenario pan-European exercise Cyber Europe 22 hosted by the European cybersecurity agency (ENISA). CERT-EU coordinated the EU institutions, bodies and agencies.
On Feb 14, we made a joint publication with ENISA, strongly encouraging all EU-based organisations to implement a set of cybersecurity best practices. Building on this joint publication, we made available specific implementation recommendations. By applying these, organisations can boost their cybersecurity defence and resilience.