This website uses cookies.
We use so-called cookies to operate our website. Cookies are files used to customize the content of a website, to measure its functionality and generally to ensure your maximum satisfaction.

necessary preferential statistical marketing unclassified Enable selected Enable all

IT - SECURITY

FORUM

HOME

Recomendations

Online Threats

Explain that contacts and information need to be verified

Source: it.portal

2 / 38

More information, which may be usefull to you, may be found after login at it-portal.sk

Actual incidents

CERT-EU Threat intelligence

show link

CISA - CYBER INCIDENTS

show link

show all

What is what in IT

NIS2 - Supply Chain Security Review

▪ The affected entities must register an overview of subcontractors
▪ Subcontractors are obliged to report security incidents
▪ The obligation of the affected ent... more...

The lifecycle of a malicious attack

• Survey
• Initial access
• Startup
• Credential access and privilege escalation
• Lateral movement
• Collection and exfiltration
• Installation o... more...

Source: it.portal

show all

Interesting

Cybercriminals are selling access to Chinese surveillance cameras

viac ako 80 000 sledovacích kamier Hikvision na svete bolo v roku 2022 bolo zraniteľných prienikom k riadiacim príkazom.
Hikvision – je skratka pre Hangzhou Hikvisio... more...

80% of organizations will use BaaS/DRaaS for at least some of their servers

Source: Veeam

show all

Recomendations

377

Reporting

Implement monthly/quarterly reporting

Source: it.portal

Data Protection

Explain which information is sensitive

Source: it.portal

show all

Institutions

NCC-SI

Office of the Government of the Republic of Slovenia for Information Securityshow link

NCC-GR

National Cybersecurity Authority of Greeceshow link

show all

Legislative

453/2007 Z. z.

Vyhláška Národného bezpečnostného úradu o administratívnej bezpečnostishow link

Source: Slov-Lex

431/2024 Sb.

VYHLÁŠKA ze dne 18. prosince 2024 o provádění certifikace při zabezpečování kryptografické ochrany utajovaných informací a o některých náležitostech žádosti o uzavření sm... more... show link

Source: e-sbirka

show all

Norms

ISO/IEC 27011:2016/Cor 1:2018

Information technology — Security techniques — Code of practice for Information security controls based on ISO/IEC 27002 for telecommunications organizations — Technical ... more...

Source: ISO

ISO/IEC 27006:2015/Amd 1:2020

Information technology — Security techniques — Requirements for bodies providing audit and certification of information security management systems — Amendment 1