EMSA is cooperating closely with the EU institutions’ Computer Emergency Response Team (CERT-EU) following the escalation in cyber-attacks that has been observed since the outbreak of the war in Ukraine.
As the risk to EU institutions and bodies is considered significant, CERT-EU has asked all EU agencies to increase their overall level of awareness and alertness.
Supporting this is the THOR tool provided by CERT-EU to strengthen security incident detection and response.
This portable scanner is capable of detecting hacking tools, backdoors and tracing hacker activity on endpoints. THOR highlights suspicious activities, reduces the associated workload and speeds up forensic analysis in moments when getting quick results is crucial.
EMSA has put in place a fully automated process that deploys THOR across more than 650 EMSA systems. This process generates approximately 80 thousand events for further analysis by the Cybersecurity Operational Centre.
Recently, the report “Great Disconnect” informed that 44% of industry professionals reported that their organisation has been the subject of a cyber attack in the last three years, with the key findings of the report noting that:
- 52% of industry professionals believe their organisation has a process in place for gathering intelligence on cyber security threats.
- 36% of industry professionals believe their organisation has been the victim of a cyber attack in the last three years.
- 73% of respondents believe their organisation has a cyber security incident response plan.
- 3% of cyber attacks resulted in the respondents’ organisation paying a ransom.
- $3.1 million is the average ransom paid.
- 34% of industry professionals believe their organisation has insurance in place to cover cyber attacks.
