On April 27th, LSEC - cyber security hub - in collaboration with B-Hive - fintech hub - organized a first joint event focused on the ongoing innovative developments in the financial services domain impacting not only financial services, but also its supply chain and operational transactions such as cyber security and information security components.
An insightfull perspective by authentication expert Isabel group introduced us into some of the challenges, including authentication developments and helping understanding some of the complexities which resulted in the current RTS (regulatory technical standard) and SCA (Strong Customer Authentication) for TTP (trusted third parties). The PSD2 directive already exists since January 2016, and is currently being adopted by the European Member States, in particular their NCA (national competent authorities), usually the regulators. Next to the PSD2 directive that amongst other enables other companies to access account information for payment services, new developments such as API's are equally seeing their routes into market. The Glue and Oracle presented insightful views of the current developments towards Open API. The NBB (National Bank of Belgium), one of the co-authors of the RTS, keynoted the event with the core fundamental behind these developments and insights in some of the working that had led to its current state. He also indicated some future routes. Identity technology provider TrustBuilder and authentication providers Vasco and SDO presented their views on the role of existing and developing authentication technologies. During some of the panels, the operators such as Ingenico and Twiki reasoned on their current challenges and how they got there; Finally other security challenges were brought by BAE Systems, indicating that there is much more than authentication in securing these new developments.
For more information and documentation background, visit the event page.
Watch out for one of the latest outbreaks, it has made many high-profile victims in just a few hours. Over 57.000 were reported in just a few hours. The RansomWare Wanna Cry (WCry) is coming through spam, in which fake invoices, job offers and other lures are being sent out to random email addresses. Within the emails is a .zip file, and once clicked that initiates the WannaCry infection. But the most concerning aspect of WannaCry is its use of the worm-like EternalBlue exploit. "This is a weapon of mass destruction, a WMD of ransomware according to Crowdstrike's Vice President Adam Meyers. Once it gets into an unpatched PC it spreads like wildfire," he told Forbes. "It's going through financials, energy companies, healthcare. It's widespread."
Given the malware is scanning the entire internet for vulnerable machines, and as many as 150,000 were deemed open to the Windows vulnerability as of earlier this month, WannaCry ransomware explosion is only expected to get worse over the weekend.
Consider already visiting www.nomoreransom.org, an initiative by Europol EC3, McAfee, the Dutch High Tech Crime Unit and Kaspersky and increasingly supported by many across the globe, including LSEC. The website offers some free support against ransomware attacks. If you have been exposed and the platform has a cleansing solution (without having to pay the ransom), you can feely download the decrypt mechanisms. They are committed in updating their anti ransom libraries regularly.
LSEC is contributing to this year's WEBIT Festival Europe, joining respected speakers and attendees from around the globe from Google, DHL, McAfee, the European Commission and crossing the bridge between IT, education, healthcare, logistics, manufacturing, culture & arts. WIth TED-like talks, WEBIT is one of the most inspiring conferences around the globe, focusing on multiple attention points and raising things such as Artificial Intelligence, Quantum Computing, Social Web of Services, Social Enterprises, e-Educational programs, Industrial challenges and developments and security.
Learn more about WEBIT and its activities at : http://www.webit.bg/security.php
At the age of 67, our friend and cyber security inspiration Howard Schmidt peacefully passed away, last March 2nd in his home in Wisconsin after a long battle of cancer.
A computer crime expert, who advised two presidents and drafted cybersecurity safeguards for the US and the rest of the world, was one of the first recognizing the need to work together in the continuous battle for a safe and secure cyber space. He founded the inpiration for many to start sharing information between law enforcement, government and business. A practice being served throughout the globe.
Rest in Peace Howard, you will continue to be an inspiration for all of us working to ensure a better world, also in cyber. You were a wonderful, amicable person, always available for a talk and support. Condolences to the family from the whole of the ICT Security community in Belgium and beyond.
Or LinkedIn Obituary https://www.linkedin.com/in/schmidthoward/recent-activity/
With approximately 250 participants, after 150 speed dates in three rounds, 40 pitches in breakout sessions, in total 18 presentations, panel discussions and a main speech, Seaside Matchmaking Cybersecurity 2016 (SMMCS2016) ended on the 14th of October in Zuiderstrandtheater The Hague.
By speed dating, idea pitching, matchmaking, best practice discovering, supply and demand connecting during SMMCS2016 foundations under future cooperation in cybersecurity research and (higher) education were made.
RVO and NWO-dcypher announced new funding rounds for long term and short term research and innovation projects. For a full impression of the event, more information about the Dutch Cyber Security Research and Innovation Agenda and funding mechanisms, visit the dcypher website
LSEC joined the Takedown Consortium, a multidisciplinary team of sociologists, psychologists, law, security and technology experts amongst others. Together they aim at generating novel insights on Organized Crime, Terrorism Networks and their use of Cybercrime. In order to meet this challenge and to investigate this complex field of research a multidimensional modelling approach is used. The resulting, proprietary TAKEDOWN Model describes social, psychological, economic aspects as well as further dimensions, activities and response approaches. A comprehensive empirical research combined with European and international expert knowledge ensures a valid and intuitive model for Security practioners, intelligence agencies and law enforcement. LSEC's experts can learn from models and operations which are also applied in cyber crimes. They can contribute with their expertise in operations of criminal behaviors and organised crime on the internet. Takedown is supported by the European Commission through the H2020 Program, and will run until 2019.
For more information, please visit the LSEC - Takedown - website part.
CEO signs deal with Intel during Dutch-Flemish trade mission to Atlanta, supported by LSEC
Philips spinoff Intrinsic-ID has been nominated to win the Innovation Radar Prize 2016. Intrinsic-ID’s technology uses biometrics to help computerchips recognize and ‘acknowledge’ other chips around the world. “Just like a human being, a chip possesses unique biometric qualities. We teach them to judge whether or not it’s safe to communicate with other chips”, founder Pim Tuyl says.
Strassbourg, July 5th 2016: LSEC is one of the Foundation Partners of a public - private partnership on cyber security, launched by the European Commission today. The partnership is expected to trigger €1.8 billion of investment by 2020, and is part of a series of new initiatives to better equip Europe against cyber-attacks and to strengthen the competitiveness of its cybersecurity sector.
LSEC coordinates and collaborates actively with its members in innovative industrial collaborations, where end user members and industrial ict security companies bring the best of their expertise, and learn about most innovative developments in Europe.
3IF.be : Industrial Internet of Things, Industrie 4.0 and Industrial Internet for manufacturing companies, industrial automation and industry at large in combination with security expertise for IoT: www.3If.be
IPACSO : Innovation Framework for Cyber Security & Privacy Innovations, IPACSO Innovation Awards and business support for ICT Security companies
ACDCCTI : the European Cyber Threat Intelligence Platform, with over 10 million vulnerabilities exchanged, from over 750 sensors in 28 European countries.