Recent News, Guidelines and Reports

On the occasion of Safer Internet Day, the Centre for Cybersecurity Belgium (CCB) wants to increase your online safety. Do as the more than 50,000 Belgians who use the free Safeonweb browser extension, a powerful tool to detect unsafe websites. 

The Centre for Cybersecurity Belgium (CCB) received multiple notifications of a spear phishing campaign targeting national CSIRTs and governmental organisations in Europe. The attacker poses as the national CSIRTs and uses phishing mails to serve an RDP file as an attachment. The goal is to acquire access to the victim’s local drives. 

Belgium is the first European member state to fully implement the new NIS2 legislation. These rules significantly strengthen the level of cyber security. An estimated at least 2,500 Belgian organisations are required from today to register on the website atwork.safeonweb.be and take security measures.  They thus hold the key to taking their cyber security to the next level.

The Centre for Cyber Security Belgium (CCB) is launching a new campaign to promote two-factor authentication (2FA).

It’s the last day to sign up for our national cybersecurity event on 19 September! Not registered yet? Secure your spot before Monday 16 September at midnight and join us in Brussels!

Remote Desktop Protocol (RDP) is a protocol that allows users to access and control computers remotely. While it offers user-friendly flexibility, it also introduces significant security risks to your organization's attack surface. Many attackers use RDP to gain access into a network and exfiltrate stolen data.

To better protect yourself, the Centre for Cybersecurity Belgium (CCB) compiled a list of recommendations and step-by-step tutorials.

A Denial of Service (DOS) attack is a cyber-attack that targets the normal traffic of a particular service. In a Distributed Denial of Service (DDoS) attack, a network website is overloaded by a botnet that simultaneously sends requests to the victim. The result may be that the availability of a particular service can no longer be guaranteed. The service is then unavailable for a period of time. There are several types of DDoS attacks.

In case of a ransomware attack, there are several steps that you can take to handle the incident efficiently. In this document we will give more information on how to respond to the incident and to help prevent this in the future.

Your password doesn't protect you like you think. Especially if someone can guess your password by looking at your social media. But let's say you have a complex password - or even a password manager - even then, cybercriminals still have ways to get behind your password. Once they are in possession of your data, you can kiss your money and possibly your identity goodbye.

So, what do you need? More than a password! A second method to verify your identity.

Today, the Centre for Cybersecurity Belgium (CCB) and the Cyber Security Coalition are launching the Stay safe online initiative, a series of simple and accessible online training courses on cyber security. In the first part, "Look where you're going!”, people will learn to identify fake messages that they receive in their inboxes and on their mobile phones. In order to reach as many people as possible, the banking sector will also share this series en masse. If everyone learns to recognize fraudulent messages, Belgium can really announce the end of phishing.

Organisations should assume that sooner or later they will be confronted with a ransomware attack. The main question is when. Preparation is key.

This is a guide about urgent actions to take when a ransomware has hit your company.

In this paper, we will talk about the best practices and technologies involved with Mobile Device Management (MDM) technologies on mobile devices. They aim to protect data that leaves the security of the corporate network as well as personal data.