2020/01/22

Making Humans the Strong Link in the IS Defence Chain (by Cyril Bras, CISO, Grenoble-Alpes Métropole)

The panorama of cyberthreats put together by the European Union Agency for Cybersecurity (ENISA) in January 2019 (ENISA, 2019) firmly situates the end user as the primary target of cyber attackers. These attackers understand that humans are the weak link in the cybersecurity chain at the level of the individual, business and government. However, this weakness can conceivably…

2019/12/03

Cyber risks management

The effects of a data breach: Loss of brand reputation and financial penalties (by Seref Can OZKAYA)

Both our social and professional lives are becoming digital, with the rapid development of information technologies and their increased importance on a day-to-day basis. As a result of this digitalization process, individuals and organizations are connected to the concept of being online and carrying their professional and social needs on digital platforms. As such digital…

2019/10/28

Cyber risks management

A Release of Digital Hostages?

The neutralisation of a botnet of more than 1,260,000 “zombie” computers has made the news in recent days. This network used the Retadup worm to enable personal data (including personal health information) to be “stolen”, computing power to be diverted to mining of cryptocurrency (Monero), spam campaigns to be launched and distributed denial-of-service (DDoS) attacks to be carried…

2019/07/25

Cyber risks management

New version of the digital risk awareness kit of Cybermalveillance.gouv.fr

On 13 June 2019, ACYMA launched a new version of the digital risk awareness kit of Cybermalveillance.gouv.fr. One year after the release of the first part of the kit, 5 new themes and 4 new formats are added to this new version. This tool was developed through months of collaboration between public institutions, private organisations and member associations of the…

2019/05/07

Cyber risks management

Is the Human Resources Department in the Blind Spot of Cybersecurity?

From FIC 2019[i] to PWC[ii] and Kaspersky[iii] —to mention only the most recent sources— it is now widely acknowledged that the techno-centric approach to cybersecurity has had its day. According to Deloitte[iv], 63% of security incidents within a company are linked to a malicious action or to an error made by an employee. It is therefore…

2019/04/08

Cyber risks management

Attack on the domain name system: the priority is to protect your access

Last weekend, the media has widely communicated on the consequences of an unprecedented attack that targeted the domain names. Indeed, during the night of 22-23 February ICANN reported the large-scale attacks on the domain names: it is DNS hijacking. These attacks consist in “replacing the authorized servers addresses with addresses of machines controlled by the…

FIC Observatory

Cyber risks management

Making Humans the Strong Link in the IS Defence Chain (by Cyril Bras, CISO, Grenoble-Alpes Métropole)

The effects of a data breach: Loss of brand reputation and financial penalties (by Seref Can OZKAYA)

A Release of Digital Hostages?

New version of the digital risk awareness kit of Cybermalveillance.gouv.fr

Is the Human Resources Department in the Blind Spot of Cybersecurity?

Attack on the domain name system: the priority is to protect your access

Twitter

Co-financed by

With the support of