Category

Ciberseguridad

24-28/09: Date with NIS Summer School in Greece

By | Ciberseguridad, Cybersecurity | No Comments

The fifth edition of NIS Summer School on Network and Information Security (NIS’18) will take place from 24th to 28th September in Heraklion (Greece).

NIS Summer School is organized by the European Union Agency for Network and Information Security (ENISA) and the Foundation for Research and Technology (Hellas). The meeting will reunite for four days different players in the sector such as the Public Administration , private sector companies and non-profit organizations.

This edition’s focus is “The Changing Risk Landscape”. The IT sector lives in constant evolution, which poses significant challenges. Due to this, the actors involved must accelerate their reaction time and encourage the exchange of collaboration and information to achieve adequate and effective responses to the challenges that may arise.

With this Summer School, ENISA seeks to promote a culture of cybersecurity in the EU. The aim is to  improve the capacity of Member States when responding to cyber-attacks. ENISA follows a risk mitigation strategy by raising awareness and publishing studies and reports on current NIS issues.

Disseminating works on Cybersecurity Threat Intelligence

Non-profit organizations working in Cyber Threat Intelligence will have the opportunity to present their work during the event, which may be related to Horizon 2020 projects, national academic research, development projects and open source communities.

Presentations at NIS Summer School

During NIS Summer School there will be a large number of speakers who come from both the public and private sectors and the university environment. Specifically, the following stand out:

  • Nektarios Tavernarakis (FORTH President)
  • Udo Helmbrecht (ENISA Executive Director)
  • Damien Cauquil (Head of Research & Development Digital Security – Econocom)
  • Piotr Kijewski (Strategic Programmes Manager The Shadowserver Foundation)
  • Prof. Dr. Ir. Bart Preneel (Full Professor Katholieke Universiteit Leuven)

 Data of the event

Date: 24th-28th September, 2018
Place: Galaxy Hotel Iraklio – Leof. Dimokratias 75, Iraklio 713 06, Grecia
URL: https://nis-summer-school.enisa.europa.eu/

To see  NIS Summer School 2018 program, click here.

NIS Summer School 2018

ETSI Security Week 2018

By | Ciberseguridad | No Comments

ETSI Security Week 2018ETSI Security Week 2018 took place last June 11th to 15th at the ETSI headquarters, located in Sophia Antipolis (southern France).

This free event addressed the main challenges in the cybersecurity sector in an increasingly digital world. The meeting focused on the  current issues in the sector such as: cybersecurity policies, legislative actions, cyber attacks and the latest technologies in this field. In addition, the fundamental challenges in the world of cybersecurity and the technical and standardization actions undertaken to overcome them were discussed.

 

Presentations at ETSI Security Week 2018

There were presentations on the following topics:

  • Latest Cybersecurity drivers, considering the latest policies and legal actions, as well as the latest cyber attacks.
  • Security / privacy / security of IoT.
  • 5G security / privacy.
  • Distributed record technologies.
  • Remote signature creation services eIDAS.
  • Middlebox and Hackathon Security.

The calendar of presentations during the month of June was the following:

  • 11th:  Latest drivers for Cybersecurity.
  • 12th and 13th: Future-Proof IoT Security and Privacy.
  • 12th: Hot topics in Middlebox security.
  • 12th and 13th: Middlebox Hackaton.
  • 13th: Remote Signature Creation Services by TSP: Protocols and Audit Requirements.
  • 13th and 14th: What does 5G Security offer?
  • 14th and 15th: Security and Trust in ICT: the Value of Distributed Ledger Technology.

If you wish to see some of the presentations that were made during Security Week 2018, please click here.

About this edition

For their part, the speakers came from different fields: national security agencies, IT leaders, cybersecurity experts, global standards organizations, developers, researchers, universities and policy makers. In total, more than 300 visitors from all over Europe participated.

The talk that attracted the most attention from the public was ” 5G Security/privacy”, in which the future of the integrated UICC was described. On the other hand, the hackathon offered a concrete example of the specifications of the ETSI TC CYBER middlebox security protocol and its implementations.

If you wish to know more about the event, please click here .

More information available on  Twitter.

Event on cybersecurity held by ENISA last April 24th

By | Ciberseguridad, Cyber-security, Cybersecurity | No Comments

On April 24th, a new edition of the event on cybersecurity organized by the European Network and Information Security Agency, ENISA, took place in Brussels (Belgium).

The conference was aimed at small and medium enterprises (SMEs), professional associations and public bodies related to the Internet of Things (IoT) and certification activities.

The objective of the event was, on the one hand, to increase awareness and deepen knowledge of the IoT and Industry 4.0 and its effect on the European cybersecurity market. On the other hand, it sought to increase collaboration among the members of ENISA by identifying common interests.

In addition, the ENISA Industry Event provided participants with an overview of the EU Certification Framework and its relationship with the European cybersecurity industry.

About “ENISA Industry Event”

The event, organized since 2015, serves to share knowledge about the cybersecurity sector. The fundamental objective of this activity is none other than to build a community in the cybersecurity sector in both the public and private sectors of the EU.

If you want more information about the event, please click here.

To consult the agenda of the day, please click here.

Impressions on Mundo Hacker Day 2018

By | Ciberseguridad, Cyber-security | No Comments

Mundo Hacker Day 2018Mundo Hacker Day 2018, the reference event on cyber-security in Spain, brought together professionals and experts in the field of cyber-security on April 25 in Madrid.

In this fifth edition, attended by more than 2,000 people, different experts from both Spain and Latin America exposed various relevant issues that affect the world of cyber-security at this time.

Among others, the following talks stood out:

  • The Upside Down World (Stranger Things). Antonio Ramos, Professor, presenter, writer and expert in Hacking and Computer Security.

Antonio Ramos exposed the advantages and disadvantages of the digitalization of society. In his opinion, automation is a positive step for modern societies but, if people are eliminated, digitization would be incomplete.

  • Round Table:

Kasperski: Dani Creus, Senior Security Researcher, Global Research & Analyst Team (GReAT), Kaspersky Lab / ESET: Josep Albors, ESET Spain Responsible for Research and Awareness / Panda Security: Conrado Crespo, Global Presales Consultant Panda Security / Viewnext: Antonio Navas Casado, Director of IS / HP Services: Melchor Sanz, CTO and HP / Sophos Presales Manager: Alberto Ruiz Rodas, Presales Engineer for Spain and Portugal at Sophos / Modera: Daniel de Blas.

  • Ay, ay, ay …. giving the bad guys where it hurts the most! David Conde, SOC / CERT Manager at S21sec

The speaker explained the field experience of the incident response service of S21sec in the fight against some of the most sophisticated organized groups operating in the international arena.

  • Round Table Hack Woman

Silvia Barrera – [IN] IT Security, Researcher, Cybercrime Specialist and Writer / Tamara Hueso – Senior Cybersecurity Analyst (IT-ERS) at Deloitte / Rosa Díaz – General Director Iberia Panda Security / María José Talavera – General Director IBERIA VMware / Albora Trimiño Díez – Cybersecurity Operator, IT Risk Fraud and Security / Miriam Martínez Muñoz – Member of HoneySec, Professor and Researcher at the University of Alcalá / Pilar Vila – Computer forensic expert / María José Montes – Head of cybersecurity of ESET Spain / Moderator: Desireé Rodriguez.

  • Digital Molotov. Gabriel Lazo Canazas.

This expert in cyber-security talked about the dangers of cyber-crime and the Deep Web.

  • Trape: The phising evolution. Jose Pino. Leader of the “TRAPE” development team.

Colombian researcher José Pino presented a TRAPE tool, developed by him, that allows people to track and execute intelligent social engineering attacks in real time.

  • When the threat is inside: detection and early response to attacks with Aruba Introspect. Artur Gradoli, Aruba Solutions Architect, Hewlett Packard Enterprise.

The conference was directed towards large companies. Artur Gradoli explained the importance of monitoring the internal network in the detection of exceptional events.

  • Advanced Digital Threats: Perspective from the trenches. Dani Creus, Senior Security Researcher, Global Research & Analyst Team (GReAT), Kaspersky Lab.

The researcher spoke about the origin of threats in large organizations: 90% are routine threats, 9.9% are directed attacks and only 0.1% are carried out with digital weapons (such as Stuxnet, among others).

  • Recon Tactics . Simón Roses Femerling, CEO of VULNEX.

This expert exposed the methods to train the “blue teams” in companies to deal with external attacks.

  • Ensure Cyber Risk: Ciber Policies , from large multinationals to SMEs, what do they protect? Manuel Huerta, CEO of Lazarus, Expert in Forensic Computing and Professor of Electronic Probatory and Digital Research.

The cyber-risk policies represent a great business opportunity at present, due to the increasing threats to the protection of the data. Faced with an exfiltration of data, companies must face fines of 2% of turnover or 10 million euros if they are SMEs, or 4% of turnover or 40 million euros if they are medium or large companies.

  •  Security operations guided by Intelligence: what is the pyramid of pain? Jorge Hurtado, VP Managed Services & Advanced Cybersecurity Services at S21sec.

Jorge Hurtado spoke about the possibilities that exist to anticipate, detect and react to threats effectively. For this expert, security operations must go hand in hand with the intelligence strategies of the companies’ cyber-defense.

  •      Secret communications and “Stay-Behind” networks: the “Harpoon” project. David Marugán.

This cyber-security consultant gave a brief historical introduction about the Stay-Behind clandestine networks. In addition, he explained the operation at the technical level and of COMSEC (Security of Communications) of the secret espionage networks. He used as an example the FS-5000 transponder equipment “HARPOON”, used since the end of the Cold War for encrypted communications.

If you wish to visualize the agenda of the event, click here.