On Sea Turtle campaign targeting Greek governmental organisations

Screenshot 2020-02-25 at 13.58.58

On 23 February 2020, greek news media reported that Greece Prime Minister’s office, the Ministry of Foreign Affairs, the National Intelligence Service and the Greek Police were the targets of an international cyber espionage campaign in April 2019 named Sea Turtle. This is one of the most significant cyber espionage activities against Greece that is publicly known.  Sea Turtle campaign has been initially reported by Cisco Talos Intelligence Group last year.

See the below timeline: Continue reading “On Sea Turtle campaign targeting Greek governmental organisations”

FIRST CTI Symposium 2020 Agenda is out!!

FIRST CTI Symposium will take place from 9 to 11 March in Zurich. There will be one day of training followed by two days of plenary sessions. This event will be open to both FIRST members and non-members.

The agenda of the Symposium is now online . Continue reading “FIRST CTI Symposium 2020 Agenda is out!!”

ENISA CTI-EU 2020 Recap

c44cb598-344c-475a-95a4-879972466ca0

On 30 and 31 of January, ENISA CTI-EU 2020 took place in Brussels. The conference was a splendid CTI bonding event bringing together 20 speakers, 160 participants and 9 vendors of CTI products.

ENISA did a great job to bring together all the above stakeholders and build an environment for connecting and exchanging ideas regarding CTI (especially within European context). Such an event is much needed within Europe since there are not a lot of opportunities to connect CTI peers from the industry with people from the public sector and from the European Commission.

Moreover, the content of the presentations was of high quality (see agenda here). Continue reading “ENISA CTI-EU 2020 Recap”

Top 20 CTI Presentations for 2019

Happy New Year everyone! 2019 was just another interesting year in CTI. Every year I use to list my top 20 CTI presentations. See below the ones I enjoyed most,  I learned something that I used in my day to day work, and gave me insights into cyber threats. I hope you enjoy them and I am looking forward to seeing your favourite ones. Enjoy and let’s have a chat  about them (and about yours) during an upcoming CTI event in 2020! Continue reading “Top 20 CTI Presentations for 2019”

Intelligence Requirements: the Sancho Panza of CTI

Screen Shot 2019-09-25 at 00.39.39

On 17 September 2019, I participated in ENISA’s NIS Summer School 2019 that took place in Heraklion, Greece. The Summer School had 4 parallel training sessions (CTI, CyberDefence, Incident Response and Crypto) and the participants were mostly graduate students as well as infosec professionals.

I joined the CTI training sessions as an instructor for “Intelligence Requirements”  as well as “CTI Reporting”. In this post, I will focus mostly on the session that was about Intelligence Requirements. Intelligence requirements is something that is very close to my heart and it was my pleasure to present this concept to the students of the summer school. Continue reading “Intelligence Requirements: the Sancho Panza of CTI”

ENISA Threat Landscape 2018 Report

Reading ENISA Threat Landscape Report 2018

The annual ENISA Threat Landscape report for 2018 is out! The report focuses on the threat landscape changes and developments in motives and tactics of the most important threat agent groups, namely cyber-criminals and state-sponsored actors. Continue reading “ENISA Threat Landscape 2018 Report”

My Top 20 CTI/DFIR Talks for 2018

Another year has passed and lots of good CTI/DFIR stuff have been presented! I took some time to watch again some of my favourite talks within 2018 and list my favourite 20 ones. The list provided below has a CTI focus, however some of the most representative talks related to blue team/red team as well as ICS have been selected. I hope you enjoy it! Continue reading “My Top 20 CTI/DFIR Talks for 2018”