When aiming to monitor an organization’s security 24/7, apart from breaches and attacks that are detected by existing tools, IT security specialists are interested in potential anomalies that seem transitory within IT systems. Sometimes such anomalies are just a random occurrence of multiple factors due to a pure technical set-up; other times they may have [...]
In October this year we concluded the third round of a series of three one week long systems and dependency analysis workshops. A one week long workshop was held in Larissa and in Rome, with the purpose of identifying potentially malicious behaviour within the services we are monitoring within the CS-AWARE pilot, and how this [...]
Blokada is a program, which sets itself up as a VPN. Think of a VPN like a street your data passes through before entering the highway of the Internet. Blokada looks for traffic to and from addresses related to advertising and tracking in general. When it finds such, it tells Android that this address is [...]
InnoSec participated in the FOSSCOMM (Free and Open Source Software Communities Meeting) 2018 conference that took place on Crete island, Greece between the 13th and 14th of October 2018. FOSSCOMM is the Panhellenic conference of free and open source software communities, where several open-source software communities participated in it, including the Hellenic Linux User Group [...]
The market for cybersecurity is currently very active, and especially companies that are providing services in the detection and reaction phases of the cybersecurity cycle are a hot commodity right now. According to a recent article in TechCrunch, within one week 4 cybersecurity companies were sold for a total of 1.5 Billion Dollar. So there [...]
RIVER PUBLISHERS SERIES IN SECURITY AND DIGITAL FORENSICS In this chapter, the EU-H2020 project CS-AWARE (running from 2017 to 2020) is presented. CS-AWARE proposes a cybersecurity awareness solution for local public administrations (LPAs) in line with the currently developing European legislatory cybersecurity framework. CS-AWARE aims to increase the automation of cybersecurity awareness approaches, by [...]
Motivated by the sudden growth of interest in Security Information and Event Management (SIEM)mechanisms worldwide, companies that develop cybersecurity products started building their own SIEMsolutions as soon as possible. Due to market share competition, each of these companies developedtheir own proprietary security rules formats and built their analysis engines to work best with thesespecific formats.Soon [...]
Just a thought, as we look at other possible competitors, etc. in cybersecurity, it’s best not to forget and keep a skeptical view of many “commercial” claims. Read –and enjoy! – this latest report from ProPublica, an independent and nonprofit newsroom that produces investigative journalism. In few words: companies that promised to beat ransomware with [...]
Sometimes we also ourselves think if what we are building in the CS-AWARE project is really useful and what someone may consider as “bare necessities” for a local public administration, or only some forward-looking, nice-to-have “stuff” which may better be described as a solution-in-search-of-a-problem. And then we read something like this here: A ransomware attack [...]
A recent article in Forbes reveals one of the latest cyber security incidents detected by Kaspersky, namely a malware disguised as a legitimate security update. Kaspersky called this attack as "one of the biggest supply-chain incidents ever." “The motivations for the malware attack are unclear, but it apparently targeted only 600 specific MAC addresses. Once [...]
