Welcome to LSEC, an internationally renowned Information security cluster, a not for profit organization that has the objective to promote Information Security and the expertise in BeNeLux and Europe. Founded by the University of Leuven (K.U. Leuven), supported by European Commission FP7 and leading a unique PAN European Private partnership that interacts with Public Institutions, LSEC connects security industry experts, research institutes and universities, government agencies, end users, funding bodies and technical experts who are driving national and European research agendas. LSEC activities aim to raise cyber security awareness, support innovation and competitiveness of the European IT- Security market and promote the visibility of its members.
The LSEC Membership has expanded significantly over the last years. Both industry (Core LSEC Members) and end user (Corporate and Individual Members) have grown exponentially. Earlier in 2017 we have released our new Membership and market analysis portal http://marketintelligence.leadersinsecurity.org. This interactive database platform allows to dynamically adapt the changes our community is constantly undertaking. The platform is there to allow for end users and industry to be able to browse through partners and providers more efficiently. While still under development, we welcome all members to take a look, to register and update their profiles and to ensure a good visibility amongst their target audiences. Users are scutinizing their partners and innovative solutions, and will be updated on their interests going forward. Take a glimpse on our Marketintelligence Platform. Once you register, you will be able to reap larger benefits and can start selecting on specific components.
We'll be adding some usage guidance, but if you like to be part of our expert panel, deciding over the user interface, please contact us at marketintel at lsec.eu with your interest.
On June 6th, LSEC, PwC and ECSO (the European Cyber Security Organization) organinzed the first Cybersecurity Industry Market Analysis fact finding workshop. Following its market study on the European Cybersecurity Industry for the European Commission - DG CONNECT, LSEC presented its unique quantitative analysis to a group of Cyber Security industry leaders in Brussels, resulting in a discussion leading to a better understanding of the market situation. Following this a series of country workshops will be organized allowing Cybersecurity services and solution providers to join in and debate the current status of the European market. The analysis presents a unique perspective of the Cybersecurity market in relation to the rest of the world, indicating total value, number of people, its actors and the types of services being offered. The gives a unique insight in interest of the end users, the types of markets and imports and exports. Further detail is being prepared and presented during the specific country workshops, and will be collected and presented during one of the Cybersecurity events in the fall, leading to the new Cybersecurity Strategy of the European Commission.
Workshops will be held in Belgium, The Netherlands, Germany, UK, Poland, Sweden, Italy, Spain, France and Greece. Participation is free of charge, seating is limited per country, registration is required. Visit the CIMA eventpage with all details on the country workshops.
On April 27th, LSEC - cyber security hub - in collaboration with B-Hive - fintech hub - organized a first joint event focused on the ongoing innovative developments in the financial services domain impacting not only financial services, but also its supply chain and operational transactions such as cyber security and information security components.
An insightfull perspective by authentication expert Isabel group introduced us into some of the challenges, including authentication developments and helping understanding some of the complexities which resulted in the current RTS (regulatory technical standard) and SCA (Strong Customer Authentication) for TTP (trusted third parties). The PSD2 directive already exists since January 2016, and is currently being adopted by the European Member States, in particular their NCA (national competent authorities), usually the regulators. Next to the PSD2 directive that amongst other enables other companies to access account information for payment services, new developments such as API's are equally seeing their routes into market. The Glue and Oracle presented insightful views of the current developments towards Open API. The NBB (National Bank of Belgium), one of the co-authors of the RTS, keynoted the event with the core fundamental behind these developments and insights in some of the working that had led to its current state. He also indicated some future routes. Identity technology provider TrustBuilder and authentication providers Vasco and SDO presented their views on the role of existing and developing authentication technologies. During some of the panels, the operators such as Ingenico and Twiki reasoned on their current challenges and how they got there; Finally other security challenges were brought by BAE Systems, indicating that there is much more than authentication in securing these new developments.
For more information and documentation background, visit the event page.
Watch out for one of the latest outbreaks, it has made many high-profile victims in just a few hours. Over 57.000 were reported in just a few hours. The RansomWare Wanna Cry (WCry) is coming through spam, in which fake invoices, job offers and other lures are being sent out to random email addresses. Within the emails is a .zip file, and once clicked that initiates the WannaCry infection. But the most concerning aspect of WannaCry is its use of the worm-like EternalBlue exploit. "This is a weapon of mass destruction, a WMD of ransomware according to Crowdstrike's Vice President Adam Meyers. Once it gets into an unpatched PC it spreads like wildfire," he told Forbes. "It's going through financials, energy companies, healthcare. It's widespread."
Given the malware is scanning the entire internet for vulnerable machines, and as many as 150,000 were deemed open to the Windows vulnerability as of earlier this month, WannaCry ransomware explosion is only expected to get worse over the weekend.
Consider already visiting www.nomoreransom.org, an initiative by Europol EC3, McAfee, the Dutch High Tech Crime Unit and Kaspersky and increasingly supported by many across the globe, including LSEC. The website offers some free support against ransomware attacks. If you have been exposed and the platform has a cleansing solution (without having to pay the ransom), you can feely download the decrypt mechanisms. They are committed in updating their anti ransom libraries regularly.