News

The Centre for Cybersecurity Belgium (CCB) is warning of a creative phishing attack believed to be via Booking.com and accounts of hotels and other accommodation providers. Cybercriminals are sending fake payment requests to guests with correct travel details. This makes them particularly credible and difficult to recognise.

The Center for Cybersecurity Belgium (CCB) warns organisations about serious vulnerabilities in Microsoft SharePoint Server. This vulnerability allows attackers to execute remote code on unpatched SharePoint servers. This means that malicious actors can use it to gain unauthorised access to systems. This vulnerability is already being actively exploited.

The summer months are a favourite time for cybercriminals. With colleagues – including members of senior management – on holiday or working from home, internal communication is often less fluid. Fraudsters take advantage of this to impersonate a CEO or CFO and send urgent payment requests. The temporary absence of a colleague who would normally approve or verify the request makes the fraud more difficult to detect. CEO fraud is a well-planned scam that can affect any organisation, especially during the holiday season.

The increasing use of online recruitment platforms has created new vulnerabilities in terms of personal data security, with cybercriminals increasingly exploiting information exposed in CVs to carry out highly targeted phishing attacks. 

As businesses increasingly shift to cloud platforms, cybercriminals are adapting fast—and the financial impact is growing. According to the Centre for Cybersecurity Belgium’s cloud security report, cloud-related breaches are now more common, harder to detect, and significantly more expensive. 

The Belgian Wall of Fame celebrates the achievements of ethical hackers who have made exceptional contributions to the protection of our country's digital infrastructure.

The Commission is inviting experts to submit their application to become a member of the newly created Health Cybersecurity Advisory Board.

The CCB has information about multiple cases in which the Ivanti vulnerability is being actively exploited with very serious consequences for the affected organisations. Organisations using EoL versions of these devices will certainly come under attack in the coming days or weeks. We therefore recommend that you take immediate action and remove the EoL devices.

We've uploaded the event recording for your convenience.

On 15 January 2025, the European Commission adopted the Action Plan on the Cybersecurity of Hospitals and Healthcare Providers. A public consultation has been launched for all stakeholders in this area.