How can we help?

    Getting started

  • What is Safeonweb@work?

    Safeonweb@work is an initiative of the Centre for Cybersecurity Belgium (CCB) aimed at Belgian organisations and companies. Its objective is to strengthen the cybersecurity of Belgian companies and organisations by providing them with advice, recommendations and tools to identify and mitigate the vulnerabilities of their systems and to be alerted to cyber threats.

  • How can this be useful for your organisation?

    Safeonweb@work aims to provide your organisation with tools to better arm yourself against cyber threats.

    By enabling you to identify threats and vulnerabilities on your network and domain, you can proactively implement the appropriate protective measures to drastically reduce the risk of cyber attacks.

    You can register your organisation and benefit from all our services for free.

    Also discover all our tips to improve your organisation's cybersecurity, available for free to all.

  • What are the services of Safeonweb@work?

    Safeonweb@work offers several services to strengthen the level of cybersecurity of your company or organisation.

    Some services are reserved for organisations registered on the platform.

    Our services for registered organisations

    These services are reserved for organisations registered on the Safeonweb@work platform.

    Cyber Threat Alerts

    The Cyber Threat Alerts service provides early warning of threats to your network. Safeonweb@work sends a specific alert if a vulnerability or an infection has been reported to Safeonweb@work on the network you have registered in the platform.

    The CCB receives daily reports from its cybersecurity partners on infections and threats. Via Safeonweb@work, you can receive these notifications directly for your network and your domain. In concrete terms, once your organisation is registered on the platform, you just need to enter your network information (IP address(es) and domain name) and your contact details, and activate the service to be notified in case of the detection of a threat on your network. If a vulnerability or infection has been discovered, an e-mail with more details will be sent.

    You can unsubscribe at any time by logging into the platform and turning off notifications.

    Cyber Threat Alerts is a free online service for organisations registered on the Safeonweb@work platform.

    You can find more information in our terms and conditions of use.

    Please note that Safeonweb@work does not replace your antivirus software.

    Register to activate your Cyber Threat Alerts service

    Quick Scan Report

    The Quick Scan Report service allows you to receive a report that will give you a overview of your organisation's online assets.

    By entering your domain name, the application will inspect, through a non-intrusive scan, your network information to identify potential vulnerabilities. We will produce a report that we will send to you by e-mail with the discovered vulnerabilities and recommendations for remediation.

    The Quick Scan Report is a free online service for organisations registered on the Safeonweb@work platform.

    You can find more information in our terms and conditions of use.

    Please note that Safeonweb@work does not replace your antivirus software.

    Register to activate your Quick Scan Report service
     

    Our services for all organisations

    These services are publicly available and free to all organisations without registration.

    Policy templates

    We provide you with a set of customizable and editable cybersecurity policy documents to facilitate the implementation of information security management within your organisation.

    Find our policy templates here

    Self-assessment

    Our self-assessment form allows you to evaluate your organisation's cybersecurity maturity level. After answering questions on cybersecurity topics, you will be able to measure your level of maturity, compare your level to that of similar organisations, and benefit from our practical recommendations in order to fill any gaps identified.

    Find our self-assessment form here

    Webinars

    Our webinars aim to raise awareness of key cyber threats by providing practical advice to organisations on how to protect themselves and their data.

    Find all our webinars here

  • Who are Safeonweb@work's services intended for?

    Safeonweb@work services are intended for companies and organisations in Belgium.

    Our services for all organisations (Policy templates, Self-assessment, Webinars, etc.) are deliberately designed to be accessible to all profiles, regardless of your level of knowledge in IT or cybersecurity.

    It is important to note, however, that services for registered organisations (Cyber Threat Alerts and Quick Scan Report) may require more IT skills. So don't hesitate to call on your IT staff or your IT service provider to make the most of these services.

  • Do I need to pay for Safeonweb@work services?

    No, all Safeonweb@work services are completely free.

    Services

  • If I have questions about the content of my Cyber Threat Alerts report or Quick Scan Report, who can I contact?

    If you have any questions about the content of your Cyber Threat Alerts report or Quick Scan Report, please contact your IT staff or your IT service provider.

    Remember that these reports are confidential and should only be shared with members of your company or organization or contracted service providers.

    Due to the huge diversity of contexts, installations, infrastructures, software, threats, infections, etc., the Safeonweb@work team cannot commit itself to answering all questions arising from the use of Safeonweb@work services.

  • What are "Threats"?

    Threats are alerts that are specific to your network.

    The Centre for Cybersecurity Belgium (CCB) receives daily information from partners about infected or vulnerable systems in Belgium. The sole purpose of the CCB is to provide information and warnings based on the information received and available.

  • Why do I have to enter my network information?

    Entering at least one of your IP addresses is required to activate the Cyber Threat Alerts service.

    By entering your IP address, we can warn you of "threats". Threats" are alerts specific to your network. These alerts are delivered by different partners. Safeonweb@work does not scan your network.

    Entering at least one of your domain names is required to activate the Quick Scan Report service.

    By filling in your domain name, we can send you an analysis report of your internet-connected assets, potential vulnerabilities identified and recommended remediation measures.

    • Safeonweb@work will only use this information to send you specific alerts, not to scan your network.
    • You can currently register up to 5 IP addresses and up to 1 domain names.
    • You can disable a service at any time from the services home page.
    • Please note that you can only register a network if you are the owner or if you have received a written authorization from the owner to receive Safeonweb@work alerts.
    • By registering your network you declare that you have read and accepted the terms and conditions of use and the personal data processing policy.
  • Why do I have to enter my contact information?

    Entering at least one reporting e-mail address is required to activate our Cyber Threat Alerts and Quick Scan Report services.

    This reporting e-mail address will be used to send you your regular threat reports and your annual report on your assets and potential discovered vulnerabilities.

    In addition to this reporting e-mail address, we invite you to provide a management contact e-mail address for administration of your account in the event of updates, important information or service interruptions, and a technical contact e-mail address that may be contacted in some cases by our technical team.

    • You can currently register up to 3 reporting e-mail addresses, 1 manager contact e-mail address and 1 technical contact e-mail address.
    • You can disable a service at any time from the services home page.
    • Please note that you can only enter an e-mail address if you are the owner or this address if you have received written authorization from the owner to receive Safeonweb@work alerts.
    • By registering your e-mail addresses you declare that you have read and accepted the terms and conditions of use and the personal data processing policy.
  • How do I activate the services once registered on the platform?

    Once you have entered your network and contact information you can freely activate and deactivate the different services from the services screen.

    Entering at least one IP address and one reporting e-mail address is required to receive your Cyber Threat Alerts report via e-mail.

    Entering at least one domain name and a reporting e-mail address is required to receive your annual Quick Scan Report via e-mail.

  • Does the service work for dynamic IPs?

    No, the Safeonweb@work platform only works for static IPs.

  • Where does Safeonweb@work get its information on infections?

    Information about infections is provided by various cybersecurity partners, from both commercial and open sources. Safeonweb@work does not get information about infections directly from your network information. Safeonweb@work does not scan your network.

  • Does the Safeonweb@work platform analyze my network?

    No. Information on infections is provided by various partners, both commercial and open source. 

  • Why aren't I getting any threat alerts?

    Because we have no information about a current threat on your network.

  • How do I unsubscribe from the alerts I receive by e-mail?

    You can unsubscribe from e-mail alerts at any time by logging into the Safeonweb@work platform and disabling the Cyber Threat Alerts service from the services home screen.

  • Can I add IP-ranges?

    No, right now we only support public static IP addresses.

  • Can I add more than five IP’s?

    No, right now we only provide services for 5 public static IP addresses

  • Can I share the Cyber Threat Alerts with my IT-providers?

    Yes, but we advise to only share with trusted IT providers with whom you have a contractual relationship.

  • Activate Cyber Threat Alerts is enabled, I removed or added a new contact detail, is this automatically done in Activate Cyber Threat Alerts?

    No, please allow some processing time.

  • How is the information of the Quick Scan Report obtained?

    This cybersecurity risk assessment report is based on data collected by CCB partners using non-intrusive techniques and threat signals gathered from trusted commercial, open-source, and proprietary sources. These threat signals are open and accessible from the public Internet, which means only non-intrusive techniques are used to gather information. Non-intrusive techniques never attempt to bypass any security controls an organisation has in place.

  • What are non-intrusive scanning techniques?

    Non-intrusive or passive scanning techniques use standardized and publicly accessible network-based protocols to query hosts. In contrast, intrusive or active scans often attempt to compromise a system and thereby highlight security vulnerabilities.

    Some attributes that can be scanned passively include for example Open ports, SSL/TLS certificates or DNS records. These three examples are non-intrusive, as the information is publicly accessible and there is no attempt to exploit the vulnerabilities found. While messages are sent to servers to trigger a response, these messages never try to take advantage of misconfigurations or simulate attacks. 

  • How long can it take to receive my Quick Scan Reports?

    Quick Scan Reports are sent within 72h. If you haven't received an email from us after this period, please contact us.

  • How many domains can I use for the Quick Scan Report?

    You can choose 1 domain per Quick Scan Report. Your Quick Scan Report will include observations for the linked sub-domains.

    General

  • How is my company or organisation's data used in Safeonweb@work?

    In order to link the data of a user to that of their company or organisation, the Safeonweb@work platform queries the public data of the Crossroads Bank of Enterprises (BCE-KBO) via the BCE-KBO Public Search tool, in order to be able to retrieve the information of a company or an organisation (Name, BCE-KBO number, physical address) for which a user is designated.

    This information is used to associate a user with an entity registered with the Crossroads Bank of Enterprises; to allow a user to select the entity or entities for which they are responsible; to ensure user control; and to ensure compliance with the terms and conditions of use of the Safeonweb@work platform.

  • What personal data is kept by Safeonweb@work?

    Safeonweb@work keeps the data needed to operate its services. This is the contact data you provide (name, surname, e-mail address, phone number), the network information you provide (IP addresses, IP ranges, domain names), your organisation's data (Name, BCE-KBO number, physical address – which is public information obtained via BCE-KBO Public search) and your National Registration number.

    More information on the processing of personal data in Safeonweb@work.

  • What about compliance with the GDPR in the Safeonweb@work application?

    The data used by Safeonweb@work is the following: the contact data you provide (name, surname, e-mail address, telephone number), the network information you provide (IP addresses, IP ranges, domain names), your organisation's data (Name, BCE-KBO number, physical address – which is public information obtained via BCE-KBO Public search) and your National Registration number.

    The IP address is sent from the application to Safeonweb@work. Safeonweb@work then checks whether cybersecurity partners have reported infections for your IP address. If this is the case, Safeonweb@work will send a specific alert via the e-mail address you provided.

    More information on the processing of personal data in Safeonweb@work.

  • Why does Safeonweb@work need my national registration number?

    The Safeonweb@work platform stores the National Registration number of its users for security purposes in order to ensure the control of users and to ensure compliance with the terms and conditions of use of the platform and its services.

  • Why does Safeonweb@work not replace an antivirus scanner?

    An antivirus software scans your entire device. It is the most important piece of software to protect your computer and your data, so never remove your antivirus. The Safeonweb@work platform does not scan your device, but gives you information about the infections detected on your network. Safeonweb@work is a protection tool for your network, just like an antivirus is for a specific device. If you use Safeonweb@work, we recommend that you continue to use your antivirus software on all your devices.

    More information about antivirus software

  • What does "this service is currently unavailable" mean?

    This error message means that the Safeonweb@work platform is temporarily unavailable due to an update or to the work of our support teams. We recommend that you try again later and refresh the page or log out and log back in.   

  • How do I report a phishing message?

    You can forward all suspicious messages to suspicious@safeonweb.be.

    More information

  • The website freezes or I have a display problem. What should I do?

    It is a good idea to close and restart your web browser. If the problems persist, check that your device and web browser are still using a recent version. We recommend that you update as soon as possible and use the latest version of your operating system and web browser.