Access to Innovation
Access to Capital
Access to Talent
Access to Market
Access to Knowledge
Date Trend snippet:
22 February 2023
Relevance date:
2021
Type of Treath or Oppertunity
Domain of application
Source of threat
- Home >
- Services >
- Access to Knowledge >
- Trend Monitor >
- Type of Threat or Opportunity >
- Trend snippet: Lessons that can be learned from a hack and data breach
Trends in Security
Trends in Security Information
The HSD Trendmonitor is designed to provide access to relevant content on various subjects in the safety and security domain, to identify relevant developments and to connect knowledge and organisations. The safety and security domain encompasses a vast number of subjects. Four relevant taxonomies (type of threat or opportunity, victim, source of threat and domain of application) have been constructed in order to visualize all of these subjects. The taxonomies and related category descriptions have been carefully composed according to other taxonomies, European and international standards and our own expertise.
In order to identify safety and security related trends, relevant reports and HSD news articles are continuously scanned, analysed and classified by hand according to the four taxonomies. This results in a wide array of observations, which we call ‘Trend Snippets’. Multiple Trend Snippets combined can provide insights into safety and security trends. The size of the circles shows the relative weight of the topic, the filters can be used to further select the most relevant content for you. If you have an addition, question or remark, drop us a line at info@securitydelta.nl.
visible on larger screens only
Please expand your browser window.
Or enjoy this interactive application on your desktop or laptop.
Lessons that can be learned from a hack and data breach
By using the example of the municipality Buren, it is explained what to do and what not to do when a hack occurs in your municipality. A variety of lessons are described.
More source info
Op vrijdagavond 1 april 2022 ontdekte een medewerker van systeembeheer bij de gemeente Buren vreemd gedrag op het ICT-netwerk. Bestanden waren niet langer toegankelijk. Een nadere blik leerde dat zo’n 12 systemen waren versleuteld, waaronder een aantal bedrijfskritische systemen. Criminelen hadden kans gezien ransomware te installeren; malafide software die bestanden gijzelt in combinatie met afpersing. Alleen na het betalen van losgeld worden de bestanden vrijgegeven.
De ransomwaregroepering in kwestie staat bekend om drievoudige afpersing (triple extortion). Slachtoffers worden afgeperst met 1) versleuteling van data, 2) DDoS-aanvallen (distributed-denial-of-service), pogingen om systemen niet of moeilijker bereikbaar te maken), en 3) verkoop/publicatie van data.
De eerste fase van de crisisbeheersing was gericht op het veilig herstellen van de ICT-systemen en het implementeren van technische maatregelen (o.a. anti-DDoS, meerfactorauthenticatie (MFA) waar dat ontbrak, monitoring en detectie).
Source:
Report
Lessen uit de hack en datalek bij Gemeente Buren
Critical Infrastructure, Cyber Security
Date published
14 November 2022
