News

Remote Desktop Protocol (RDP) is a protocol that allows users to access and control computers remotely. While it offers user-friendly flexibility, it also introduces significant security risks to your organization's attack surface. Many attackers use RDP to gain access into a network and exfiltrate stolen data.

To better protect yourself, the Centre for Cybersecurity Belgium (CCB) compiled a list of recommendations and step-by-step tutorials.

A Denial of Service (DOS) attack is a cyber-attack that targets the normal traffic of a particular service. In a Distributed Denial of Service (DDoS) attack, a network website is overloaded by a botnet that simultaneously sends requests to the victim. The result may be that the availability of a particular service can no longer be guaranteed. The service is then unavailable for a period of time. There are several types of DDoS attacks.

In case of a ransomware attack, there are several steps that you can take to handle the incident efficiently. In this document we will give more information on how to respond to the incident and to help prevent this in the future.

Your password doesn't protect you like you think. Especially if someone can guess your password by looking at your social media. But let's say you have a complex password - or even a password manager - even then, cybercriminals still have ways to get behind your password. Once they are in possession of your data, you can kiss your money and possibly your identity goodbye.

So, what do you need? More than a password! A second method to verify your identity.

Today, the Centre for Cybersecurity Belgium (CCB) and the Cyber Security Coalition are launching the Stay safe online initiative, a series of simple and accessible online training courses on cyber security. In the first part, "Look where you're going!”, people will learn to identify fake messages that they receive in their inboxes and on their mobile phones. In order to reach as many people as possible, the banking sector will also share this series en masse. If everyone learns to recognize fraudulent messages, Belgium can really announce the end of phishing.

Organisations should assume that sooner or later they will be confronted with a ransomware attack. The main question is when. Preparation is key.

This is a guide about urgent actions to take when a ransomware has hit your company.

In this paper, we will talk about the best practices and technologies involved with Mobile Device Management (MDM) technologies on mobile devices. They aim to protect data that leaves the security of the corporate network as well as personal data.

Surf without worries is a series of simple and accessible online cybersecurity courses.

In the first part, Watch where you're going!, learn to recognize fake messages that arrive in our email inboxes and on our mobile phones.

The risk of cyber attacks continues to rise. On average, there are 100 cyber attacks every day, an increase of 37% compared to 2019. Almost 70% of these attacks escape prosecution. Testimonies from companies that have been victims of cyber attacks show that they are often in the dark or improvising at the time of a cyber incident. Experts from the Federation of Enterprises in Belgium (FEB) and the Centre for Cybersecurity Belgium have therefore drawn up a roadmap in close collaboration with the business community and public authorities. A guide that accompanies companies from the moment they discover the incident until the situation is normalised.

If not patched and looked after regularly, a company network infrastructure and website will present flaws or weaknesses, called vulnerabilities, that can be exploited by an opponent to cause damage or perform unauthorized actions. This could result in compromising the confidentiality (e.g. private information leakage), the integrity (e.g. unauthorized modification of data), or the availability (e.g. website down) of resources.

Boards have a statutory duty to have proper risk oversight. Cyber risk constitutes by now a critical, potentially material, business risk. However, most Boards are ill-equipped to deal with cyber risks. They consider cyber as too technical, they merely approve resources and delegate the risk.

This document provides guidance on generic, pragmatic and generic technical criteria and some relevant references for Antivirus, EDR and XDR  security solutions.