European renewable power grid suffered a cyber-attack
20 Dec 2012
A German power utility specialising in renewable energy was hit by a serious cyber-attack that lasted five days, knocking its internet communications systems offline, in the first confirmed digital assault against a European grid operator.
EU could make firms disclose network security breaches
19 Dec 2012
The European Union may force companies operating critical infrastructure in areas such as banking, energy and stock exchanges to report major online attacks and reveal security breaches. The final goal is to change the culture around cyber security from one where people are sometimes afraid or ashamed to admit a problem, to one where authorities and network owners are better able to work together to maximize security.
Cybersecurity: The European Parliament is concerned
18 Dec 2012
The European Parliament has released a report on cybersecurity, focusing in the rapidly growth of threats and cyber attacks against government, administrative, military and international bodies. It notes that recent cyberattacks against European information networks and state information systems have caused extensive damage from the viewpoints of economic and security whose scope has not been adequately evaluated.
Status report 2012 on Computer Emergency Response Teams baseline capabilities launched by EU Agency ENISA
17 Dec 2012
The Status report provides information about the current situation in Europe regarding the CERTs capabilities and how theses capabilities are deployed. The Focus of this report was on Four baseline capabilities: cooperation, strategy, operations and service portfolio.Recommendations on each baseline capability are presented in the report.
December 2012, Critical Infrastructure Protection and Resilience Month
14 Dec 2012
December 2012 has been proclaimed as Critical Infrastructure Protection and Resilience Month by president Obama, to remember the importance of protecting critical infrastructures and enhancing the security and resilience of the nation.
FBI publishes a memo about the hacking of an insdutrial heating system in New Jersey
13 Dec 2012
FBI has published a memo with the details of the attack that an industrial heating system in New Jersey suffered in February and March of this year. The hackers were targeting SCADA systems, and found this heating and air conditioning control system using the Shodan search engine.
National Cyber Security Framework Manual Published
07 Dec 2012
NATO Cooperative Cyber Defence Centre of Excellence has published the “National Cyber Security Framework Manual” which aims to support NATO Member States and Partner Nations with a guide to develop or improve their national policies and laws related to national cyber-security.
Hostile states using cyberwarfare to attack UK infrastructure
03 Dec 2012
The UK government has admitted a cyber attack and mapping of the country's power networks. UK Governoment officials inform this attack has not been the first one. During this last year, billions of pounds of intellectual property have been stolen from UK businesses. This is the first time UK admits that firms providing essential services have also been subjected to attacks from abroad.
23 vulnerabilities founded in SCADA software from several vendors
29 Nov 2012
The vulnerabilities were discovered by a startup security firm and affect SCADA software from: Rockwell Automation, Schneider Electric, Indusoft, RealFlex and Eaton. These problems were discovered easily just a few minutes from the time the software was installed. The researcher who discovered them affirmed that it was more difficult for him to obtain the software than it was to find flaws in it.
ENISA: Proactive Detection of Security Incidents - Honeypots
28 Nov 2012
A report created by ENISA collects 30 digital traps or honeypots which can be used by Computer Emergency Response Teams (CERT) to detect cyberattacks preventively. The report explains the basic concepts of a honeypot and it also offers recommendations about which one should be used.