Update your threat map

Digital trust is crucial to the security of every connected thing, from the ocean floor to the vastness of space. Satellites offer valuable services, from communications and the Internet, to satellite navigation and Earth observation systems, to national security. A space-based cyberattack would cause disruption and gigantic losses, not just material ones. During the lecture, I will talk about current security levels, disclosed cases of hacked satellites and the consequences of these attacks, as well as what is currently (not) being done to better secure this critical orbital infrastructure. I will also suggest where to look for knowledge and additional information in this area.

For CISOs, it's important to understand the requirements of NIS2 and make sure your company is compliant in a timely manner. In this interview, we explain what NIS2 is and how to prepare for it as a company. We provide some advice for CISOs and those responsible for security at the company. 

It is not a particularly difficult task to design a super-secure IT architecture. It's not even an overly expensive challenge. We have enough standards, benchmarks and best practices to be able to deal with the most serious threats. But despite all our knowledge - Iran's nuclear program was sabotaged with a worm carried on a USB drive (ok - a very advanced worm). Are we now better equipped to protect our production processes than Iran was 13 years ago? And is it even possible to implement a secure system in an era of digital transformation? From the perspective of minimizing the attack surface, where is the place for the recently ubiquitous artificial intelligence and where is it just a marketing slogan. And why we should finally stop calling humans the weakest element in a security system.

Cyber criminals, foreign special services, and other adversaries, unfettered by ethics or the law, create - in often very creative ways - novel and innovative forms and vectors of attacks using AI. Conducting such attacks is generally cheaper and easier than implementing effective preventive tools and methods for defending against and combating threats. Thus, it can be assumed that in the near term, the harmful use and abuse of AI technologies may outweigh the positive and helpful methods based on AI tools in maintaining a high level of security. Are we in a losing position? How should the implementation of technological solutions be planned to level our playing field on this entirely new plane of conflict?

What do cyber attacks and privileged users have in common?

We live in a world full of privileged accounts and a plethora of access keys, from domain accounts to local Unix passwords, the number of digital identities we need to protect is growing rapidly.

Which account is taken over can decide the difference between a simple network breach and a cyber disaster. That's because once the credentials of a privileged account are taken over, an attacker can impersonate a trusted employee or system and carry out malicious activities without being detected as an intruder. Once attackers breach a privileged account, they can usually roam freely in the IT environment to steal information and wreak havoc. During the session we will discuss:

• Three examples and use cases of privilege-based attacks.
• The best methods currently used to reduce the risk of a privileged account attack.
• How to significantly improve the productivity of IT teams and systems.
• How to provide your IT department, the administrators, with insight into what is happening on your network and when it is happening.

Technologies, such as IoT, 5G, blockchain, edge computing and AI are changing the cybersecurity landscape and posing significant new challenges for organizations. These new technologies require CISOs to rethink security architectures, challenge old assumptions, rip and replace completely outdated security platforms, and invest in new categories of security.

Ransomware has evolved from being a side occupation for cybercriminals to targeted big game hunting operations using sophisticated technical means. When ransomware threatens to shut down business operations, one of the most important measures of success is the speed of response and isolation of the problem to the initial attack vector. Together, we will look at the process tree from a ransomware attack, analyze selected details and context of the attack, and finally answer the question of what more can be done to improve the ability to proactively detect malicious activity.

Over the past year, many IT leaders have begun to consider using the Secure Access Service Edge (SASE) platform to enable faster and more secure communications in their organizations. Since the network edge follows the employee, it has become essential to provide a solution that combines networking and security functions into a single, native cloud service that provides access to distributed corporate resources from anywhere. The session will introduce HPE Aruba Networking's answer to these challenges.

Digital hygiene is the health-protective behavior associated with the use of the Internet and screen devices, and more broadly: information and communication technologies. They pose enormous challenges to our brains, which are evolutionarily unprepared to function freely in a 21st century information society. Therefore, using them in a healthy way is a challenge for everyone, regardless of age. The level of digital hygiene has a huge impact on the cyber security of people of all ages. What kind of impact? Magdalena Bigaj, creator of the Institute for Digital Citizenship and author of the book "Raising by the Screen. How to prepare your child for life online?" (W.A.B. Publishing House)