The unity and contradiction of quarantine and opening, closing and opening is indicated by the motto of this year’s ITBN CONF-EXPO on 28-29 September. The role of digital technology is twofold, not only to help the world deal with the epidemic, but also to increase its exposure to attacks.
Listen to the organizers of ITBN CONF-EXPO
A large number of organizations and users have switched to online operations and services due to the restrictive measures introduced in the last year and a half. How the digitalization in the epidemic affects the threat environment and cyber defense, as well as the content and format of the most important cybersecurity conference in Central and Eastern Europe – we asked Arthur Keleti
Computerworld: How is the sudden digital revolution shaping cyber trust, user security awareness and cybercrime strategies?
Kelth Arthur: Telework, digital education, traditions, customs and technological traditions of online administration differ from country to country and culture to culture. background. While in 2018, one in twenty employees worked telecommuting, this year roughly half of people can work at least part from home. The epidemic has unexpectedly hit countries in particular where, due to shorter distances or the development of digital culture, there has been no need for remote tasks so far. While the proportion of people working almost entirely from home at EU level is around 13%, all Eastern European countries remain well below average
act, this is a general experience. This is still the case, so that almost half of the employees did not receive adequate information and tools to deal with the cyber security problems of telework, and a quarter of them incurred additional expenses in this connection. Cybercrime, of course, has slammed down on the opportunity, with a 100 percent increase in the number of phishing emails that specifically took advantage of the pandemic situation. The number of calls to me for help has multiplied since the beginning of the epidemic, with daily incidents involving hacked accounts or stolen data
In 20% of companies and institutions, remote users caused security incidents, and security incidents involving individuals, if there is where to report them, are handled at a mixed level by service providers or public bodies, so I think the situation will only get worse. The whole profession faces serious challenges because the time between detecting and resolving security incidents has been around 280 days for years, and we can’t exercise that down. Even before events are detected, we measure hundreds of days, and teleworking and remote access only make this more difficult.
)
The real solution is automatic detection, problem solving, for both employees and individuals, which I think is only artificial. we can achieve with intelligence. Even in the management of secrets, AI is the only solution, but it is still in its infancy in interpreting context and norms. I view the emergence of NLP systems as an encouraging breakout point. With solutions such as GPT3 and the forthcoming GPT4, for example, we are getting closer to getting concrete suggestions for users to deal with more general cyber security incidents, or to detect attacks based on artificial intelligence in time.
CW: One of the serious cyber security incidents this year is the Pegasus case. According to the information obtained so far, according to the Israeli manufacturer, journalists, lawyers, businessmen and politicians have also been observed in Hungary with spyware sold exclusively to government actors and used in the fight against terrorists and organized criminals. However, the exploration is hindered by the fact that due to the absence of the delegates of the party in government, the competent parliamentary committee has not been able to find out about the increasingly clear matter until now (until the publication of our paper). Thus, in the Pegasus incident, the secret also appears, is damaged, multiplied and transformed in several ways. What lesson does the secret researcher draw from the developments?
Arthur the East: An invisible, invisible, all-encompassing application for the average person that is not perceived by either manufacturers or cyber security companies. What can a cybersecurity expert with a secret say about this? Chess mat. But we also learned in this profession that we have to stand up even after the most serious attack, the most unimaginable incident, the most incapable of data theft. It is necessary to understand what has happened, what is happening and who is involved in such a case
Listen to the organizers of ITBN CONF-EXPO
We have been following the development of such applications in cybersecurity for many years. It also follows from the operation of secret services and their devices that the general cyber security market may know little about the technologies and methods used. Ironically, it is the hacking or data leakage of law enforcement or the secret service that brings some of these methods to the surface. I think society is looking for ways to draw some moral or normative boundary around them. Who needs to ask permission and from whom exactly to use such devices? What kind of social and professional control do we want? What level of protection do we expect from, for example, telecom operators or mobile device manufacturers? Today we do not find this limit, we do not know what is right and what is not, so the judgment is subjective, not to mention the little information that can be revealed at all in specific cases.
Also in the definition of secrets I see serious turmoil. Based on some scientific approaches, we have now identified nearly 40 secret categories, one of which has an average of thirteen secrets related to sex life, financial situation, and different levels of lies. Applications like Pegasus affect them to varying degrees, but always cause serious breaches of confidentiality. On an individual level, we feel this is the most serious problem, it really upsets us. In my 2016 book, The Imperfect Secret, I wrote that by 2020, we can’t protect 75 percent of sensitive information. I hold, I raise this bet.
CW: What cybersecurity trends will be the focus of this year’s ITBN CONF-EXPO conference and how can we follow the presentations?
Balogh Turul: Two days with more than a hundred performers and actors from an exclusive environment , from a TV studio equipped with professional video and sound technology, we broadcast lectures and roundtable discussions of the excellence of the profession twelve hours a day, moderated by well-known reporters.
We start both days with a morning talk show, where we talk about lifestyle, professional our habits, the world of technology, novelties in the context of cyber security will be discussed, so that the audience can tune in to the subsequent opening and other professional presentations, panel discussions, which are the two programs running in parallel. they follow each other alternately on a ram channel from seven in the morning to seven in the evening. On the main channel, the professional speakers will carry the sound, while the bustling (buzz) channel will be looser and more conversational. Of course, we don’t expect the audience to sit in front of the display at twelve hours a day, we also take breaks to refresh and stretch.
put your attention. Initiatives to end-to-end encrypted communications for counter-terrorism and law enforcement, or at least to make their content available to certain actors, are provoking heated debate. Opposing this idea is Phil Zimmerman, the creator of the most popular email encryption software, PGP (Pretty Good Privacy), who will be our guest and give a very unique presentation on the future of encryption. And Peter Snyder, a privacy researcher at Brave Browser, will explain how the web should work beyond browsers to better protect users and privacy.
Listen to the ITBN CONF
Judit Fribék, Chief Investigator of the Standby Police with internet lawyer Katalin Baracsi and writer Ákos Solymos on cyber security issues of child protection, including the responsibility of parents who recklessly share images on social networks , will discuss the ethical and legal assessment of such content. The roundtable discussion, which provides an insight into the cyber defense of domestic epidemic management, the experience report of Hungarian students who have succeeded in international cyber security competitions, and the presentation of Lt. Col. Richard Szongoth, Europol’s liaison adviser, The audience of the conference can also get acquainted with the Hungarian security operations center (SOCs) and the proposed solution to the problems, domestic cyber security researchers, the latest developments in the European cyber security framework, fraud detection methods for financial service providers and many other exciting areas.
This year we will also present the ITBN awards and recognize the work of the incident management team of the year, a specialist, with a special award. The hybrid nature of the conference is strengthened by the fact that we plan to give a glimpse behind the scenes of the conference on the spot. The number of people interested and the conditions under which we will organize these tours will also depend on the number of people interested and the further development of the epidemic situation. Our cyberphysics event website will be live before and after the two days of the event, where visitors can view presentations from previous years and build relationships with vendors, cyber security professionals and other participants throughout the domestic and regional industry supply chain
.
Hardware, software, tests, curiosities and colorful news from the IT world by clicking here
