On 3 November 2022, ENISA published its Threat Landscape 2022 report, which is the annual report of the EU Agency for Cybersecurity on the state of the cybersecurity threat landscape. This is the 10th edition of the ETL report and covers a reporting period from July 2021 to July 2022. ETL report is an annual must-read for most cyber security professionals (at least) within the EU. The report might look long at first glance (~150 pages), but it is split into separate sections:Continue reading “ENISA Threat Landscape 2022 – Threat Actor Trends”
ENISA organises the fourth edition of the CTI-EU event on 7 December 2022 in Brussels. This is a great opportunity for the CTI Community to review the most relevant topics on the domain. The main objective of the CTI-EU event is to bring experts, researchers, practitioners and academics together to promote the dialogue and envision the future of Cyber Threat Intelligence for Europe. The participation is free of charge.Continue reading “ENISA CTI-EU 2022 Conference”
All good things come to an end! FIRST CTI Symposium 2022 took place on 1, 2, and 3 of November 2022 and was a BLAST! If I chose one word to summarise what I felt during the conference days, I would say COMMUNITY is the right one. 300 CTI people from all over the world got connected after 2,5 years of work and virtual conferences from their home office.Continue reading “FIRST CTI Symposium 2022 Recap”
I am honored to have been appointed as one of the 18 expert members of the European Union Agency for Cybersecurity (ENISA) Ad-hoc Working Group on Cyber Threat Landscapes. The group will offer assistance and expertise in designing, updating, and reviewing CTI methodologies, including the annual ENISA Threat Landscape Report. I am looking forward to work with the rest of the Working Group’s members as well as with ENISA people.Continue reading “ENISA’s Ad-Hoc Working Group on Cyber Threat Landscapes”
A couple of months ago, my classmate Xenofon Fafoutis kindly invited me for a guest lecture at the Department of Applied Mathematics and Computer Science of the Technical University of Denmark. Thus, on 27th April I was pleased to present to DTU students the basic concepts of cyber threat intelligence, the current threat landscape (with a focus on ransomware and state-sponsored threats), as well as the CTI analyst skillset.
See below the slide deck of the lecture:
The References for the guest lecture can be found here .
I would like to thank again Xenofon for inviting me and I really enjoyed the discussions :)
My presentation at SANS CTI Summit 2021 is now online! The presentation is all about the past, present and future of Threat Intelligence Platforms (TIPs). The title of the presentation is “Still thinking your Ex(cel)? Here are some TIPs“.Continue reading “SANS CTI Summit 2021 Video Recording”
Hey folks! 2020 was a year to remember mostly because of non-CTI related stuff. Every year I write a blog post about my top CTI presentations but this time I am a little bit late (aren’t we still in 2020 mode in any case?).
Due to the pandemic, we had the opportunity to participate in many online conferences/summits and watch lots of presentations. See below (in random order) the CTI presentations I enjoyed most, learned something that I applied to my day-to-day work, and gave me insights into cyber threats and CTI practices.
Hopefully this year we will have more F2F conferences and interaction. Enjoy and stay safe!
Having a Threat Intelligence Platform (TIP) is a good thing for the CTI team. However, this raises the follow-up question:
How do you select the best TIP for your organisation?Continue reading “Excel-ing at Threat Intelligence Platform (TIP) Requirements”
Woohoo! My presentation during SANS CTI Summit 2020 was selected among SANS top-rated 2020 presentations!! Below you can watch it and feel free to provide any feedback. Enjoy :)
On 23 February 2020, greek news media reported that Greece Prime Minister’s office, the Ministry of Foreign Affairs, the National Intelligence Service and the Greek Police were the targets of an international cyber espionage campaign in April 2019 named Sea Turtle. This is one of the most significant cyber espionage activities against Greece that is publicly known. Sea Turtle campaign has been initially reported by Cisco Talos Intelligence Group last year.
See the below timeline: Continue reading “On Sea Turtle campaign targeting Greek governmental organisations”