News

News

4 October 2024

The cold boot attack is a cyber attack that allows sensitive data to be extracted from the RAM memory of a computer by exploiting the fact that the data can persist for a short time after the system has been shut down. The attacker, who must have physical access to [...]

News

2 October 2024

Bluesnarfing is a little-known but serious cyber security threat consisting of unauthorized access to a device's data via Bluetooth. This attack can occur without the user being aware of it, exploiting vulnerabilities in the Bluetooth protocol to steal sensitive information such as contacts, emails, messages and stored files.

News

2 October 2024

Bluejacking is an attack that uses Bluetooth technology to send unsolicited messages to nearby devices, such as smartphones and tablets. Although it is not seriously harmful, it can be annoying and compromise privacy. Derived from the combination of ‘Bluetooth’ and ‘hijacking’, bluejacking allows messages to be sent to devices without [...]

News

1 October 2024

Bluetooth is a widely used wireless technology for connecting short-range devices. Since its introduction, it has transformed the way we exchange data between devices such as smartphones, tablets, computers, and accessories like headphones and keyboards. However, like any technology, it presents potential cyber security risks that must be understood and [...]

News

30 September 2024

A disaster recovery plan (DRP) is a strategic document that details how an organization will respond to events that disrupt its business operations. These events can range from natural disasters to technological failures and cybersecurity attacks. The DRP is an integral part of disaster recovery & business continuity planning as [...]

News

30 September 2024

A disaster recovery plan (DRP) is a strategic document that details how an organization will respond to events that disrupt its business operations. These events can range from natural disasters to technological failures and cybersecurity attacks. The DRP is an integral part of disaster recovery & business continuity planning as [...]

News

27 September 2024

Information security is a top priority for keeping digital data safe. Computer systems are constantly threatened by attacks that can compromise sensitive data. The CIA Triad (Confidentiality, Integrity, and Availability) represents the three fundamental pillars to ensure information security. Understanding and implementing the CIA Triad in cybersecurity is important for:  [...]

News

27 September 2024

Business Email Compromise (BEC) is an advanced form of fraud that affects companies of various sizes, causing significant economic losses globally. This fraud involves the compromise of corporate email accounts, typically through phishing or spear phishing techniques, with the aim of inducing employees to make money transfers or disclose confidential [...]

News

26 September 2024

Cyber warfare, or cyber war, is the use of information technology to attack another state's critical infrastructure, causing significant damage and compromising national security. These attacks can range from viruses to complex DDoS attacks. The term “cyber cold war” derives from the 20th century Cold War, describing a modern digital [...]

News

25 September 2024

The increasing connectivity and intelligence of modern vehicles have introduced new risks of cyber attacks in the automotive sector, making cybersecurity a key aspect of vehicle and occupant safety. UN Regulations 155 and 156, together with the ISO 21434 standard, set crucial standards for automotive cybersecurity. Attacks, such as the [...]

News

23 September 2024

The secure software development life cycle (SDLC) is a fundamental process that ensures the creation of a high-quality, secure, and reliable software product. This cycle includes a series of well-defined phases, each playing a crucial role in ensuring that the software is developed according to high standards and effectively meets [...]

News

18 September 2024

Mobile banking apps have become essential tools for managing one's account quickly and conveniently directly from a cell phone. However, as the use of mobile devices for banking transactions increases, so does the need to ensure mobile banking security to protect their customers' sensitive data. Home banking activities from the [...]

News

12 September 2024

Worms are a type of malware distinguished by their ability to self-replicate and spread autonomously through networks, without the need to attach themselves to executable files. This characteristic makes them particularly dangerous as they can quickly infect many devices. They spread through e-mail, instant messages, file sharing and compromised websites, [...]

News

11 September 2024

Cyber security protects computer systems from threats such as ransomware attacks and data breaches, ensuring the security of information.

News

10 September 2024

Wi-Fi Protected Access (WPA) encryption and its evolution WPA2 are fundamental security protocols to protect wireless networks. WPA replaced the less secure WEP protocol by introducing dynamic encryption keys that change regularly, making it difficult for hackers to intercept communications. WPA2 further improved security by adopting the AES (Advanced Encryption [...]

News

10 September 2024

The European Union Agency for Cybersecurity (ENISA), founded in 2004 and based in Athens, is an essential body for cybersecurity in the European Union. Its task is to raise the levels of network and information security in the member states. ENISA works with national cybersecurity authorities, EU institutions and other [...]

News

9 September 2024

The Chief Information Security Officer (CISO) is a crucial figure within companies, responsible for cybersecurity. His or her main job is to protect sensitive data and develop strategies to combat cyber threats and ensure system resilience. The CISO must possess advanced technical skills, a deep understanding of cyber threats, and [...]

News

6 September 2024

AES (Advanced Encryption Standard) is a symmetric block encryption algorithm developed by Belgian cryptographers Joan Daemen and Vincent Rijmen and adopted in 2001 by the US National Institute of Standards and Technology (NIST) as the successor to DES (Data Encryption Standard). This algorithm, widely used in areas ranging from military [...]

News

5 September 2024

Anonymization techniques are essential to ensure that sensitive information cannot be attributed to an identified or identifiable natural person. In this article we will explore in detail: What it means to anonymize data, The techniques used, The benefits, The challenges associated with this practice.

News

4 September 2024

Data minimization is one of the core principles of personal data protection, especially in the context of the GDPR (General Data Protection Regulation). This principle ensures that personal data collected and processed are adequate, relevant, and limited to what is necessary in relation to the purposes for which they are [...]

News

3 September 2024

Crisis management is a crucial discipline for any organization, large or small, that aims to preserve its reputation and respond effectively to crisis situations. The crisis management team and the emergency response team are two fundamental components of this discipline, each with a specific role in mitigating the negative impacts [...]

News

3 September 2024

The distinction between cyber security and cyber resilience is crucial for the protection of information systems. Although often used synonymously, they represent distinct but complementary concepts. Cyber security focuses on preventing cyber attacks through measures such as firewalls, antivirus and multi-factor authentication. Best practices include strict security policies, continuous staff [...]

News

2 September 2024

The Agency for National Cybersecurity (ACN) is crucial for protecting Italy's digital infrastructure. Established by a decree-law at the initiative of the Prime Minister and the Council of Ministers, the ACN responds to the need for inter-ministerial coordination for cybersecurity. The agency acts as a national cybersecurity authority, protecting national [...]

News

30 August 2024

Tabletop exercises are essential for cyber crisis management, enabling companies to prepare for and respond effectively to cyber incidents. Also known as tabletop security, these simulations of crisis scenarios take place in a controlled environment, allowing participants to develop and test contingency plans without risking real operations. Tabletop exercises consist [...]