European Union Agency for Network and Information Security

Call for Expression of Interest – CAMSec Experts Group

Wed, 04/01/2020 - 10:00

The Experts Group is intended to address the cybersecurity threats, challenges and solutions of Intelligent Transport Systems  (ITS) and Connected and Automated Mobility (CAM) Transport.

Participants to the CAMSec Experts Group shall contribute to enhance the current level of cyber security in ITS and CAM Systems by sharing their expertise.

The Experts Group is expected to:

  • contribute to relevant position and policy papers on security topics in the domain of ITS and CAM Systems;
  • Exchange knowledge with other participants and ensure the convergence of current and future cyber security efforts;
  • Discuss the different approaches taken towards protecting ITS and CAM Infrastructures systems (policy, standardisation…).

Experts of the CAMSec group shall have expertise in one or several of the following domains:

  • Vehicle manufacturing with a focus on cyber security;
  • Suppliers and developers of vehicular hardware and/or software with a focus on cyber security;
  • Associations and non-profit organisations involved in vehicle security;
  • Standardisation and/or Government bodies and academia.

How to apply:

  • Information about the CAMSec Experts Group, terms of reference, privacy statement and application form is available in the dedicated page: CAMSec Expert Group.
  • Applicants will be selected according to defined selection criteria included in the call. Members shall be appointed by the Executive Director of ENISA.
  • This call will remain open for a period of 3 years

Further Information:

CAMsec Expert Group Eall for Expression of Interest - Resilience portal

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:


APF 2020 postponed

Thu, 03/26/2020 - 15:00

Due to the COVID-19 outbreak, the EU Agency for Cybersecurity together with the Annual Privacy Forum 2020 (APF 2020) co-organizers unanimously decided to postpone the organization of the APF for October 2020.

The Annual Privacy Forum 2020 (APF 2020) organizers are closely monitoring the corona virus pandemic. The exact dates will be communicated in due time, once the organizers have more information on how the overall situation evolves.

About APF

The ENISA Annual Privacy Forum (APF) is a conference that is organised yearly, on the thematic conjuncture of information security and privacy that brings together contributions from policy, research and the industry.

For more information, please visit:


Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:


Call for Expression of Interest: Experts Group in Artificial Intelligence Cybersecurity

Tue, 03/24/2020 - 11:20

Artificial Intelligence (AI) is an emerging concept facilitating intelligent and automated decision-making. Whereas undoubtedly beneficial, one should not sidestep the fact that AI and its application on automated decision making might open up new avenues in manipulation and attack methods, while creating new security and privacy challenges.

ENISA launches a call for an Ad Hoc Expert Group on Artificial Intelligence (AI) cybersecurity  to bring together a multi-disciplinary group of experts. The scope of this ad hoc working group is to advise ENISA on cybersecurity topics related to Artificial Intelligence.

Participants to the AI working group shall contribute to enhancing the current knowledge of AI by sharing their expertise on current threats, challenges and solutions, while interacting with a broad range of stakeholders for the purpose of collecting input on:

  • AI cybersecurity;
  • AI explainability and trustworthiness;
  • AI risk management;
  • Sectorial AI expertise;
  • Algorithmic security;
  • Data security in relation to AI;

Other relevant topics and key tasks of this ad hoc working group include:

  • advising ENISA on developing an asset taxonomy and threat landscape for Artificial Intelligence using risk management methodology;
  • advising on mitigating AI risks, including advice on specific use cases and application scenarios in the field;
  • reviewing of related ENISA deliverables;
  • advising ENISA on related security measures and recommendations;
  • providing general  advice to ENISA in carrying out its tasks in relation to Artificial Intelligence cybersecurity.

How to apply:

Information about the Artificial Intelligence experts group, the terms of reference and the application form in the page dedicated to the ad hoc Working Group call.

Applicants will be selected according to defined selection criteria included in the call. Members shall be appointed by the Executive Director of ENISA.

Applications must be submitted by 18:00 CET (Brussels time) on 15th April 2020.

Further Information:

Artificial Intelligence ad hoc Working Group call

ENISA website's section on Artificial Intelligence

For interviews and questions


Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:


Cyber Europe 2020 postponed

Mon, 03/23/2020 - 09:00

Cyber Europe: preparing healthcare sector to respond to cyber crisis is the 6th Pan European exercise that the EU Agency for Cybersecurity had planned for June 2020.  

The Cyber Europe 2020 planners developed a scenario revolving around healthcare, which can include, Ministries of Health, hospitals, clinics, labs and eHealth service providers with potential impacts in other sectors.

After request from the national planners (the national authorities in charge of coordinating Cyber Europe for each Member State) Cyber Europe 2020 will be postponed

Due to the Covid-19 outbreak, the healthcare sector is currently going through a major crisis that will test its resilience and therefore a simulated cyber crisis like Cyber Europe is currently not a priority.

For this reason the Agency together with the national planners unanimously decided to postpone the exercise for early 2021.

The situation will be further assessed in the next six months.

About Cyber Europe

Cyber Europe is a series of pan-European exercises aimed at testing cybersecurity, business continuity and crisis management capabilities. The exercise is organised by the Agency since 2010. The Cyber Europe exercises are simulations of large-scale cybersecurity incidents that escalate to become cyber crisis. The exercises take place once every two years. The scenario contains real life inspired technical incidents to analyse, from forensic and malware analysis, open source intelligence, and of course non-technical incidents.

More Information on Cyber Europe:

 Contact Details:


Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:


Joint fight against COVID-19 related threats

Fri, 03/20/2020 - 10:00

The coronavirus outbreak has spurred widespread anxiety and forced many people to work from home. Malign actors are actively exploiting these new challenging circumstances to target remote workers, businesses and individuals alike.

Relevant European Union entities are in close contact with one another to track these malicious activities, raise awareness in their respective communities and help protect confined citizens. The European Commission, ENISA, CERT-EU and Europol, among others, will continue to monitor the situation and coordinate as appropriate to insure a safer cyberspace for the EU and the world.



Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:


Security requirements for operators of essential services and digital service providers

Thu, 03/19/2020 - 15:30

Operators of essential services and digital service providers are facing new legal obligations. Security measures are now legally binding. Two legislative acts set the requirements. Both acts entered into force in 2018. They are:

  • The Network and Information Security Directive (NISD)
  • The General Data Protection Regulation (GDPR).

The focus of each act is different. ENISA has already published documents with good practices for these two acts. Therefore, the purpose of the Report - Stock Taking of security requirements set by different legal frameworks on OES and DSPs is to present a mapping of already identified security objectives in the NISD as well as in the GDPR with ENISA good practice guides.

Report Objectives

  • To advise operators of essential services as well as digital service providers in their process of identifying appropriate security measures based on the provisions of both legislative acts.

Report Content

  • Information and guidance in reports already issued by ENISA;
  • A mapping of already identified security objectives, as defined in both NISD and GDPR.

Target Audience

  • Operators of essential services;
  • Digital Service Providers;
  • NIS Competent Bodies;
  • Data Protection Authorities.

Key recommendations

  • NIS Competent Bodies and Data Protection Authorities to address:
    • A process inclusive of both NIS and GDPR risk management frameworks;
    • Sector specific approaches considering the specific needs for information security as well as for data protection;
    • A cooperation method to improve consistency, under the leadership of the European Commission.
    • Certification in the context of the two acts, together with the EU agency for Cybersecurity and the European Commission.
  • The European Scientific Community together with the EU Agency for Cybersecurity to continue providing specialised guidance on data protection and security techniques.


Further information

ENISA Report - Stock taking of security requirements set by different legal frameworks on OES and DSPs

Further queries: please contact


Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:


Top Tips for Cybersecurity when Working Remotely

Sun, 03/15/2020 - 21:00

shutterstock 2020

One of the key preventative measures for the spread of Covid-19 is social distancing. Luckily, in this increasingly connected world we can continue our professional and private lives virtually.  However, with huge increases in the number of people working remotely, it is vital that we also take care of our cyber hygiene.

Awareness and preparedness are both vital - use the CERT-EU News Monitor to stay updated on the latest threats and check the following basics:

  • Secure wifi connection. Most wifi systems at home these days are correctly secured, but some older installations might not be. With an insecure connection, people in the near vicinity can snoop your traffic.
  • Fully updated anti-virus system in place.
  • Up to date security software. Security tools such as privacy tools, add-ons for browsers etc need to be up to date. Patch levels should be regularly checked.
  • Remember to back up periodically. All important files should be backed up regularly. In a worst case scenario, staff could fall foul of ransomware for instance. Then all is lost without a backup.
  • Lock your screen if you work in a shared space.
  • Make sure you are using a secure connection to your work environment.
  • Check if you have encryption tools installed.

 Things employers can do:

  • Provide initial and then regular feedback to staff on how to react in case of problems. Who to call, hours of service, emergency procedures and how they evolve.
  • Give suitable priority to the support of remote access solutions. Employers should provide at least authentication and secure session capabilities (essentially encryption).
  • Provide virtual solutions. At the EU Agency for Cybersecurity, we use electronic signatures and virtual approval workflows to ensure continuous functionality.
  • Ensure adequate support in case of problems. This may require setting up special rotas for staff.
  • Define a clear procedure to follow in case of a security incident.
  • Consider restricting access to sensitive systems where it makes sense.


Covid-19 Phishing Attacks

It is important to step up awareness of digital security during this time as we have already seen an increase in phishing attacks. We recommend, as far as possible, to not mix work and leisure activities on the same device and be particularly careful with any mails referencing the corona-virus. Attackers are exploiting the situation, so look out for phishing emails and scams. 

In the current situation, one should be suspicious of any e-mails asking to check or renew your credentials even if it seems to comes from a trusted source. Please try to verify the authenticity of the request through other means, do not click on suspicious links or open any suspicious attachments.

  • Be very suspicious of mails from people you don't know- especially if they ask to connect to links or open files (if in doubt phone your security officer).


  • Mails that create an image of urgency or severe consequences are key candidates for phishing - in these cases always verify via an external channel before complying.


  • Mails sent from people you know, but asking for unusual things are also suspect - verify by phone if possible.

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:


After cloud…cybersecurity certification: launching the ENISA ad hoc Working Group on Cloud Services

Fri, 03/06/2020 - 09:30

Under the EU Cybersecurity Act, an ad hoc working group provides advice to the European Union Agency for Cybersecurity (ENISA) vis-à-vis a draft candidate cybersecurity certification scheme and it culminates open consultation with relevant stakeholders.

Over the past few years, cloud services have become the backbone of information and telecommunications services in the Digital Single Market as consumers as well as private and public services alike seek to reap the benefits of ubiquitous services in relation to increased productivity at a lower cost. In response, several Member States including but not limited to France, Germany, Spain and the Netherlands have set up assessment and/or certification frameworks concerning these services. These frameworks have complemented private certification schemes widely available throughout the market.  

Acting on a prominent Commission initiative, dubbed CSP-CERT, representatives of both the private and the public sectors have already reached consensus and put forward a proposal for a certification scheme for the cloud; however, several aspects have yet to be sorted out.

The Commission request to ENISA concerning a cybersecurity certification scheme for Cloud services has been grounded on the Regulation for the free flow of non-personal data. Other relevant aspects concerning the cybersecurity of non-personal as well as personal data flows are likely to also come under the scope.

This ad hoc working group is composed of 20 selected members broadly representing stakeholders’ communities across providers and users, small and large companies, public sector etc. The work of this group has also attracted the interest of around 15 representatives from Member States public authorities as well as EU Institutions and bodies that have designated representatives; the output draft candidate cybersecurity certification is expected to be finalised in late 2020.


Further Information

ENISA's work on cloud servicies

ENISA's work on certification schemes

Call for expression of interest for an ad hoc Working Group on cybersecurity certification for cloud services

For questions and interviews:


Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:


Building a Stronger Cybersecurity Community: 8th ENISA Industry Event

Wed, 02/19/2020 - 15:00

With the new European Parliament and Commission, and following the conclusion of the legislative process for the new EU Cybersecurity Act, 2020 will be a year that marks important milestones for the EU and the EU Agency for Cybersecurity in particular.

Within this context however, the primary objective of the ENISA Industry Event 2020 remains unchanged. Through this mechanism, the Agency will continue to inform small and medium sized businesses on recent cybersecurity policy and industrial policy developments and to help them to adapt to and to make the most of opportunities offered by these developments. By so doing, ENISA aims to support this stakeholder group by improving the level of cybersecurity throughout the EU,  and to encourage collaboration in the development of a more competitive cybersecurity market in parallel.

Steve Purser, Head of Core Operations at ENISA, opened the forum with an explanation of how the role of the Agency has evolved with the coming into force of the Cybersecurity Act (CSA). Particular attention was given to the EU Cybersecurity Certification Framework and the ‘Blueprint’ (cyber crisis coordination and pan-European incident handling). He also used the example of the recent work done at EU level to secure 5G implementations and suggested that this approach might be considered as a template for how the Agency deals with other future technology challenges, such as Artificial Intelligence (AI).

The conference focused on the latest policy developments and how these affect the European Industry landscape.

In the morning session, industry members of the Commission's High Level expert group on Artificial Intelligence (AI), experts from ENISA, the Joint Research Center and Fraunhofer Institute spoke gave an overview of the current situation of cybersecurity for AI.

The afternoon session was kicked off by Commission officials presenting the priorities of the new Commission, the cyber-security package, Horizon 2020 funding and cyber-theft of trade secrets. ENISA also shared recent developments since the adoption of the Cybersecurity Act including a briefing on the state of affairs in cyber-security certification. A panel moderated by the Head of Core operations of ENISA and composed by lead certification experts from ENISA, BSI, Cloud security Alliance, BEUC, and the EBF, discussed the benefits of EU cyber-security certification schemes.’

ENISA will help to empower and mobilise European industry players towards a trusted and secure digital society.  It will consolidate the input from its stakeholders and will provide policy makers such as the European Commission and Parliament with its recommendations based on industry’s inputs.


ENISA is celebrating its 8th anniversary since the creation of the Industry Community in 2015. ENISA has been organising its Industry Events in an effort to stimulate the development of the EU network and information security (NIS) industry. The event aims to improve collaboration between ENISA and the private sector, in particularly SMEs, that are considered to be the drivers of our digital economy.

Further Information

Event page: ENISA Industry Event 2020

For queries or interviews, please contact


Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:


Telecom Security Authorities meeting in Brussels

Wed, 02/19/2020 - 09:00

The first part of the meeting was open and attended by 150 telecom security experts from the public and the private sector including telecom operators, suppliers, industry associations, national authorities, cybersecurity experts and policy makers.

The second part of the meeting was closed and attended by 50 experts from European telecom security authorities, who extensively discussed legislation, reporting thresholds, amongst other topics.

Programme and speakers

The programme included talks on a wide range of telecom security talks, with speakers from the public and private sector. A short summary of the talks is as follows:  

  • Vangelis Ouzounis, EU Agency for Cybersecurity, Warna Munzebrock, Dutch Radiocommunications Agency and chair of the Article 13a group, and Jakub Boratyński, European Commission, gave opening statements to kick off the meeting.
  • Oscar Koeroo, KPN, spoke about the security mix and meeting unknown expectations
  • Thomas Tschersich, Deutsche Telekom, discussed zero-trust networks
  • Tanja Lange, Eindhoven University of Technology, spoke about quantum computing and progress in post-quantum cryptography.
  • Julie Ruff, European Commission, gave a presentation about the EU toolbox for 5G cybersecurity             
  • Mikko Karikytö, Ericsson, spoke about 5G Security from the supplier perspective.
  • James Moran, GSMA, outlined the Network Equipment Security Assurance Scheme (NESAS).
  • Bert van den Oord, Royal Netherlands Meteorological Institute, presented the impact of space weather (solar flare for example) on vital sectors.
  • Lorelien Hoet and Florian Pennings, Microsoft, spoke about Microsoft as a global cloud player in a cybersecurity and telecom environment.
  • Nina Cummins, Facebook, spoke about security reporting under the EECC, the new European telecom rules.
  • Nicolas Mayer, LIST, and Kevin Cassoli, IRIS, presented a new tool for integrated and model-based Article 13a compliance.
  • Benoit Vivier, European Emergency Number Association EENA112, spoke about the evolution of (112) access to emergency services.
  • Marnix Dekker, EU Agency for Cybersecurity, discussed about the importance of securing DNS.
  • Fennel Aurora, F-Secure, closed the day with a compelling talk about the importance of privacy in the electronic age.

Day Two

The second part of the meeting was closed and only for experts from telecom regulators and supervisory authorities from 30 EU and EEA/EFTA countries. In this closed part of the meeting, regulatory topics such as the new reporting thresholds for breach reporting under the new telecom security rules (the EECC) and how to update the Article 13a security framework to better fit the new telecom rules were discussed.

Other ENISA events back-to-back

To reduce the amount of air travel for these groups, ENISA organised other meetings back-to-back. Earlier in the week, the Agency hosted the 3rd meeting of national authorities for the security of digital infrastructures under the NIS Directive (TLD, IXP, DNS). At the end of the week, the Agency organised a 5G security seminar for the telecom security authorities to build up technical knowledge on 5G, mobile networks, interconnections and signalling.

Related Telecom Security Work

The new telecom rules will come into force at the end of 2020. The Agency recently published a paper listing the changes in telecom Security Supervision under the European Electronic Communications Code (EECC).

For the interested reader, the statistical data about telecom security 2018 incidents are available in the Telecom security incident reporting - Visual Tool, which allows custom data aggregations and analysis.

In the coming months ENISA will publish the ‘Annual Telecom Security Incident’ report, which aggregates and analyses the major incidents which were reported across Europe in 2019. The previous Annual Report Telecom Security Incidents 2018 showed interesting trends, regarding the size of system failures (decreasing) and the overall impact of natural phenomena (increasing, and for the first time the biggest share).


Over the last 10 years, the EU Agency for Cybersecurity has worked closely with European telecom security authorities to implement Article 13a of the Framework directive, i.e. regarding incident reporting and security requirements for telecom operators. The Article 13a group meets 3 times per year. Once per year we organise a telecom security meeting for a broader audience.

The Article 13a Expert Group was set up 10 years ago by the Agency, under the auspices of the European Commission, to agree on a harmonised implementation of Article 13a of the Telecom Framework Directive, which requires EU countries to supervise the security of telecom networks and services in the EU.

Further Information

Details on the Article 13a Group are available on the Resilience portal - Article 13a 

If you like to know more, or if you want to join our mailing lists to be kept up to date about our telecom security work or to receive invitations for future telecom security meetings, please contact us via

For queries or interviews, please contact


Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:


Second Staff Exchange between EU Cybersecurity Organisations

Wed, 02/19/2020 - 08:00

After a successful first edition at Europol in June 2019, the second iteration of the Staff Exchange initiative between the four Parties to the Memorandum of Understanding (MoU) – the European Defence Agency (EDA), CERT-EU, the EU Cybersecurity Agency (ENISA) and Europol’s European Cybercrime Centre (EC3), took place from 17 to 20 February 2020.

As part of the MoU partners’ Roadmap 2020-2021, this programme seeks to promote a better mutual understanding of respective priorities, practices and to deepen the working relationships across the respective organisations.

Hosted jointly by EDA and CERT-EU in Brussels, the experts focused on strategic developments in cyber defence, trained in threat hunting and met with industry representatives.

Olli Ruutu, EDA Chief Executive (ad interim), said: “The staff exchange is an excellent opportunity to share views and knowledge and further improve our common understanding of the work done by our respective entities. It is also a special moment for thinking outside the box with like-minded colleagues. There is a lot to be taken away from these Staff Exchanges which fully reflect the collaborative spirit of the Memorandum of Understanding we concluded in May 2018 to leverage synergies between our four organisations and promoting cooperation on cyber security and cyber defence.”

Saâd Kadhi, Head of CERT-EU, said: “This second Staff Exchange builds on the achievements of the one before. It will continue to improve the mutual understanding and cooperation between our organisations, ultimately leading to better collective cyber defence.

Juhan Lepassaar, ENISA’s Executive Director, said: “The EU Cybersecurity Agency welcomes the Staff Exchange initiative hosted by EDA and CERT-EU and sees this as a fruitful, knowledge-sharing exercise that fosters increased collaboration between the signatories.

Fernando Ruiz, Acting Head of Europol’s European Cybercrime Centre said: “The close cooperation and knowledge sharing between our entities contribute to building a robust European cyber defence. This Staff Exchange initiative, hosted by the European Defence Agency and CERT-EU, will strengthen the capabilities of our experts to effectively tackle the cyber threat and protect EU citizens, businesses and organisations.

Further information:

Please contact


Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:


The European Cyber Security Challenge encourages young people to pursue a cyber career

Fri, 02/14/2020 - 11:00

The EU Agency for Cybersecurity, ENISA and representatives of the countries participating in the European Cyber Security Challenge ( are meeting in Vienna, Austria to discuss and plan the 2020 edition.

The main topics discussed during this planning conference were:

  • Lessons learned from ECSC 2019
  • Introduction of the new countries joining the competition
  • ECSC2020: Set-up and Infrastructure
  • Public affairs and communications aspects

The outlook for the 2020 ECSC final is very positive with 25 countries expressing interest to participate. A number of new ideas that are expected to enhance the competition will be discussed over the next two days in the meeting at Vienna.

ECSC 2019

The 2019 edition of the European Cyber Security Challenge took place in the Parliament building in Bucharest, Romania, in October 2019. For the first time, teams from 20 countries participated at the final (Austria, Cyprus, Czech Republic, Denmark, Estonia, France, Germany, Greece, Italy, Ireland, Liechtenstein, Luxembourg, Netherlands, Norway, Poland, Portugal, Romania, Spain, Switzerland, United Kingdom).

The participants investigated vulnerabilities in web applications, binaries and document files, solved crypto puzzles and hack hardware systems. However, technical skills are just one part of the whole story. As time and resources were limited, teamwork and presentation skills were also evaluated. The finalists of ECSC 2019 were the teams from Romania, Italy and Austria.

The next planning meeting will be hosted by ENISA towards the end of June.

Further information:

You can find more information on the ECSC website:

or watching the ECSC video trailer.


Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:


Call for Expression of Interest - eHealth Security Experts Group

Wed, 02/12/2020 - 08:00

The EU Agency for Cybersecurity (ENISA) eHealth Security Experts Group is the second iteration of the expert group focusing in the healthcare sector, initially created in 2015. The creation of this Experts Group aims at gathering experts from the healthcare sector to exchange viewpoints and ideas on cybersecurity threats, challenges and solutions, as well as to support ENISA in its work in the sector.

Participants to the eHealth Security Experts Group shall contribute to enhancing the current level of cybersecurity knowledge in healthcare by sharing their expertise on current threats, challenges and solutions. The scope of the ENISA eHealth Security Experts Group covers the entire ecosystem of eHealth systems and services as well as their potential interdependencies with other sectors.

Experts with technical background expertise and direct exposure on one or more of the following are invited to apply:

  • Operators of eHealth systems and services (healthcare organisations, national eHealth service providers etc.) with responsibilities for cybersecurity in their organisations;
  • National competent authorities for eHealth/healthcare services;
  • Manufacturers or integrators of medical devices or healthcare information systems with a focus on cybersecurity;
  • Associations and not-for-profit organisations involved in eHealth security;
  • Relevant authorities, academia, standardisation bodies and policymakers directly involved in the above topics.

Additional information about the eHealth Security Experts Group, as well as a link to the registration form, is available in the eHealth Experts Group's web page.


Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:


“Stronger Together” Cyber Europe 2020, get involved!

Tue, 02/11/2020 - 08:00

Cyber Europe 2020 is the sixth large-scale pan-european cyber exercise facilitated by the EU Agency for Cybersecurity (ENISA). This year marks 10 years of cybersecurity exercises in Europe, a milestone for this unique initiative.

Keeping Europe safe is a shared responsibility. In this spirit the exercise aims to build cybersecurity capacities, strengthen EU cooperation and increase cybersecurity awareness and preparedness in the healthcare sector.

The participation to the exercise is open; if you are interested in getting involved you can find more information here:

For any question on the Cyber Europe 2020 exercise, please contact:

Exercise Promotion:

We encourage our partners in the European Union, EFTA members, National Cybersecurity Authorities, private companies, European Commission and other EU bodies and Institutions such as CERT-EU, the European Council and Europol to join efforts on rolling out this one-off communications campaign by sharing, re-tweeting and re-publishing ENISA’s posts. All planners and participants are equally encouraged to post regularly regarding their own participation.

Contact Details:

For any question on the communications and press, please contact


Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:


Cyber Threat Intelligence Community Bonding event

Mon, 02/03/2020 - 16:30

20 speakers participating in the various CTI sessions and a wide audience of 160 participants made this a successful event. Approximately 9 vendors of CTI products have participated in the CTI showroom, networking with the event participants.

During the presentations and interactions with participants, it was stressed that CTI is about information collection, contextualisation, analysis and creation of bodies of knowledge. Processes guiding these activities need to undergo a continuous maturity process.

In the EU, historically, some organisation units have started developing these capabilities due to their emerging role and needs. ENISA, CERT EU, DG CONNECT, EEAS, JRC, EDA are such cases, all present in the panel CTI in European Commission services, opened by the EU Agency for Cybersecurity Executive Director, Juhan Lepassaar.

Their engagement spans most of the CTI areas: operational/tactical (CERT EU), tactical/strategic (ENISA), strategic/policy (Commission) geopolitical (EEAS), defence (Commission, EDA), scientific/hybrid threats capability (JRC). In the meantime, these activities became mainstream in the daily businesses of these organisations.

The objective of the conference was to learn from available knowledge and analysis skills, facilitate exchange of best practices, find synergies with the aim to make approaches coherent. We can together find paths to mutually achieve a higher level of CTI maturity. Initial steps with CERT EU and JRC on the matter have been already agreed, a short time ago.

This is imperative in order to facilitate decision-making and risk management activities at all levels: technical, operational, scientific, policy and diplomacy.

This is a vital contribution increasing European autonomy in the critical area of CTI and at the same time towards strategic objective of a unified European approach in cybersecurity.

The Network Information Security conference organised by ENISA and FORTH Hellas Institute, will take place again on the last quarter of the year. Information on this event will be become available soon.


Further Information:

Event page - 2020 CTI-EU | Bonding EU Cyber Threat Intelligence


Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:


The EU Agency for Cybersecurity endorses the EU Toolbox for 5G Security

Thu, 01/30/2020 - 14:00

Last year, the EU Agency for Cybersecurity also supported the EU Member States with developing an EU-wide joint risk assessment regarding the 5G roll out, and delivered a 5G threat landscape report, which analyses threats at a more technical level. All three items, i.e. the joint risk assessment, the threat landscape and the toolbox are implementing what was requested by the European Commission in the recommendation on 5G cybersecurity of March of last year.

The EU Toolbox for 5G Security published yesterday was developed by the NIS Cooperation group. This group has representatives from all EU Member States and it was set up under the NIS Directive, for the purpose of strategic EU-wide collaboration on cybersecurity issues.

The NIS Cooperation group is currently chaired by Croatia under the Presidency of the EU Council. 5G cybersecurity is one of several work streams of activities inside the NIS Cooperation group. ENISA supports the group in all the different activities, helping member states with the drafting of guidelines, reference documents with good practices, developing collaboration procedures, exercises, etc. Yesterday, for example, the NIS Cooperation group launched a new work stream on cybersecurity in the health care sector.

The EU Agency for Cybersecurity is looking forward to supporting the European Commission and the EU Member States with the next steps, i.e. the implementation of the toolbox.


Further information:

EU Toolbox for 5G Security

European Commission's factsheet about the EU Toolbox for 5G Security

European Commission's press release endorsing the EU Toolbox for 5G Security

European Commission's communication on implementing the EU Toolbox for 5G Security

NIS Cooperation group 

ENISA - threat landscape for 5G Networks

European Commission's recommendation on 5G cybersecurity


Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:


EU Agency for Cybersecurity and Joint Research Centre discuss cooperation

Wed, 01/22/2020 - 09:15

From the left-side: Georg Peter JRC, Evangelos Ouzounis ENISA, Jean-Pierre Nordvik JRC, Dan Chirondojan JRC, Juhan Lepassaar ENISA, Steve Purser ENISA.

Today, the EU Agency for Cybersecurity held a meeting with representatives of the Joint Research Centre (JRC) to discuss alignment of tasks in the areas of cybersecurity and emerging technologies. We need to build foresight capacities so that both bodies can fulfil their core functions.

Juhan Lepassaar, the Executive Director of the Agency and Steve Purser, Head of Core Operations welcomed the following delegation from the JRC: Dan Chirondojan, Director, Directorate E - Space, Security and Migration, Georg Peter, Head of Unit, Unit E.2, Technology Innovation in Security and Jean-Pierre Nordvik, Unit E.3 - Cyber and Digital Citizens' Security.

The meeting included presentations from the Agency on cybersecurity certification, new technologies and cyber threat intelligence. Other areas of cooperation were discussed including the possibilities of exchanging staff members and the sharing of tools.

The Agency needs to cooperate closely with many partners in the cybersecurity ecosystem and the meeting aims to strengthen our relationship with the JRC.


For further queries:

Please contact


Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:


Open platform and tools to facilitate the collaboration among Computer Security Incident Response Teams

Wed, 01/15/2020 - 15:15

Recently, the European Commission has selected a tender for funding under the call “Connecting Europe Facility – Cybersecurity Digital Service Infrastructure Maintenance and Evolution of Core Service Platform Cooperation Mechanism for CSIRTs – MeliCERTes Facility” (SMART 2018/1024).

The winner is a strong consortium stemming from the CSIRTs community.  Poland’s national Computer Emergency Response Team (NASK/ will coordinate the work of the consortium supported by four partners, the Austrian Computer Emergency Response Team (, the Estonian Information System Authority (CERT.EE), the Computer Incident Response Center Luxembourg (CIRCL) and Deloitte. They will work together to further develop and maintain the MeliCERTes platform offering sustainable services and collaboration tools to EU CSIRTs.

Building on the services provided by the initial MeliCERTes platform and now hosted by the EU Cybersecurity Agency, ENISA, the new grant will cover:

  • The implementation of a collection of open source tools used, developed and maintained by the CSIRTs themselves, with the primary goal of providing services for their own constituency.
  • Improvement of the existing foundation as bootstrapped in MeliCERTes into long-term maintainable and a more operationalised platform, meant to support the cooperation efforts within the CSIRTs Network.
  • Apart from maintenance and development of the key components of MeliCERTes, such as MISP and IntelMQ, fresh ideas for tooling will be incorporated during the project, for example vulnerability management and disclosure, large-scale malware storage or leak analysis and detection capabilities.

A special emphasis will be put on ensuring that the needs and requirements of newer CSIRTs will be addressed. The consortium is composed of three members of the CSIRTs Network, which have a proven track record of both building new tooling and maintaining software over the long-term, such as, CERT.PL, CIRCL and CERT EE.

This 3 years grant receives a funding of 2 million EUR by the EU. It will be carried out in close collaboration with ENISA, the EU Agency for Cybersecurity is hosting the central node of the MeliCERTes facility. It builds on the outcomes of SMART 2015/1089 that developed the MeliCERTes core platform.

Cybersecurity in Europe’s industrial sectors and operators of essential services

Support to another important area comes from the CEF call ”Cybersecurity digital service infrastructure establishment of a core service platform cooperation mechanism for Information Sharing and Analysis Centres (ISACs) facilities manager” (SMART 2018/1022). The EU has procured 1.5 million EUR to a 3 years grant to assist the establishment and further development of European level sectorial ISACs covering all the sectors and subsectors identified by the NIS Directive (Annex II), such as in the energy, finance, healthcare, water distribution, digital infrastructure and transport sectors.

In the selected grant Gapgemini (coordinator) and Intrasoft work together in a consortium supported by the Spark Legal Network, the Netherlands Organisation for applied scientific research (TNO) and the German DFN-CERT Services. The action will include the development of a strategy for the creation of new ISACs in critical sectors, support their start-up phase by providing technical and legal support and facilitate the launch of ISACs on a European level - also building on existing ISACs. The consortium will involve and closely work together with stakeholders from all relevant sectors. Also in this activity, ENISA will be a key partner in establishing European level sectorial ISACs.

Today the kick-off meeting for both grants takes place in Brussels.

Further information:

DG CONNECT news article

Calls for tender:

Melicertes 2 (SMART 2018/1024)

ISACs (SMART 2018/1022)


Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:


The state of Cybersecurity Vulnerabilities 2018-2019

Tue, 01/14/2020 - 07:55

From the left-side: Georgios Psykakos CERT-EU, Marnix Dekker ENISA, Evangelos Ouzounis ENISA, Saad Kadhi CERT-EU, Juhan Lepassaar ENISA, Steve Purser ENISA, Andrea Dufkova ENISA, Cosmin Ciobanu ENISA.

CERT-EU Working Visit

ENISA´s Executive Director, Juhan Lepassaar and Head of Core Operations, Steve Purser welcomed the Head of CERT-EU, Saâd Kadhi to its premises in Athens. CERT-EU plays an important role in effective and efficient response to information security incidents and the mitigation of cyber threats against the European Union institutions, bodies and agencies.

The meeting included an overview of key ENISA and CERT-EU activities, including steps to enhance their bilateral cooperation as foreseen by the Cybersecurity Act with presentations on the CSIRTs Network, Cyber Threat Intelligence and the EU Blueprint for rapid emergency response in case of a large scale cross-border cyber incidents or crises.

Information exchange and collaboration in joint projects are key priorities for CERT-EU and ENISA underpinned in the Memorandum of Understanding that was signed in May 2018 *.

State of Cybersecurity Vulnerabilities 2018-2019

Coinciding with the CERT-EU visit, the EU Agency for Cybersecurity published a report on the state of vulnerabilities 2018-2019. The report includes valuable contribution from CERT-EU experts as well as other renowned cybersecurity experts. Sharing information on vulnerabilities allows for informed decisions to made, remedies to be put it in place and risks to be evaluated.

The ‘State of Cybersecurity Vulnerabilities’ report published today continues the work that was initially produced in 2016 when ENISA published the first of its kind report covering the topic of vulnerability disclosure. Since then, the vulnerability ecosystem has matured considerably. The positive developments are associated with increased efforts in collecting more accurate and consistent information about vulnerabilities, their severity, associated exploits/attacks as well as potential impact and complexity.

Standardisation of Collected Information

Standardisation plays a key role in the vulnerability information collection process by streamlining threat intelligence sharing and risk management. Generally, the information about vulnerabilities resides in either public or private/commercial databases, therefore it's not unreasonable to assume that there are differences among them, in terms of reliability, accuracy and completeness.


The purpose of the report is to provide an insight on both the opportunities and limitations that the vulnerability ecosystem offers. By using the vulnerabilities published during the year of 2018 and Q1-Q2 of 2019 as a vehicle, this report attempts to go beyond the standard exploratory analysis, which is well captured by industry whitepapers and reports, and instead attempts to answer questions related to the reliability, accuracy of the vulnerability sources and the widely accepted evaluation metrics.

The end goal of the report is to help the InfoSec community, public/private organisations and vendors to take informed decisions about patching, prioritisation of security controls and lastly to improve their risk assessment process.

Target audience

  • Information Security community (CSIRTs, Security Operations, other organisations with a stake in cybersecurity),
  • Public and private organisations
  • Research and Academia
  • Vendors


CERT-EU and the EU Agency for Cybersecurity have signed a Memorandum of Understanding (MoU) in May 2018 together with Europol and EDA to establish a cooperation framework between their organisations. It focuses on five areas of cooperation, namely Exchange of information; Education & Training; Cyber exercises; Technical cooperation; and Strategic and Administrative matters.

Full report:

ENISA report - State of Vulnerabilities 2018/2019 - Analysis of Events in the life of Vulnerabilities.

For further queries:

Please contact


Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:


Call for expression of interest for an ad hoc Working Group

Thu, 12/19/2019 - 09:00

In response to a European Commission request addressed to the EU Agency for Cybersecurity (ENISA), the Agency announces this call for expression of interest for the selection of the 20-member strong ad hoc working group for the purpose of preparing a candidate cybersecurity certification scheme on Cloud Services.

 The candidate cybersecurity certification scheme is envisaged to provide for cybersecurity certification of a broad range of cloud services. The ad hoc working group on cloud services will draw its input from existing schemes and sources, and its first task will be to specify further the scope of the scheme.

The EU Agency for Cybersecurity invites a wide range of stakeholders to express their interest to join this working group. The ad hoc working group on cloud services will include representatives from cloud service providers, cloud service users, providers of value added cloud services, consumer organisations, conformity assessment bodies, scheme owners etc.

The deadline for this call is on 20 January 2020.

Further information on this call including the terms of reference and an application form are available through the page Ad-hoc Working Groups calls.


Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items: