20 02, 2019


Albania: Cybersecurity Capacity Review 2018 


Through a collaboration agreement with The World Bank, the Global Cyber Security Capacity Centre facilitated a self-assessment of cybersecurity capacity in the Republic of Albania in September 2018. The objective was to enable Albania to determine the areas of capacity the country might strategically invest in to become more cyber secure.
To conduct this assessment, the Capacity Centre applied its Cybersecurity Capacity Maturity Model for Nations (CMM), which identifies five inter-related dimensions of cybersecurity capacity through which a country can self-assess capacity.
You can read the full report here. The report is published by the National Authority for Electronic Certificaton and Cyber Security (AKCESK).​

Report on Cybersecurity Maturity Level in Albania  


10 02, 2019


National Program for work practices  


Based on decision of the Council of Ministers no. 395, dated 29.04.2015 "On the approval of the national program of work practices in state administration and other public institutions", amended, the Ministry of Education, Sports and Youth announces the opening of the fourth call of the National Program of work practices.
The application can be submited from 8 February to 28 February 2019.
The application is open to young professionals aged 21 to 26, who possess a minimum Bachelor or equivalent diploma [...]

01 02, 2019


Cyber Security News Bulletin, January 2019  


Javën e fundit ka ndodhur ekspozimi i 3 terabyte të dhëna sensitive që i përkisnin Departamentit të Sigurisë në Oklahoma. Të dhënat ishin marrë nga një server, dhe dobësia u zbulua nga kompania UpGrard. Në përgjigje të incidentit të ndodhur, Komisioni i Sigurisë në Oklahoma publikoi një deklaratë për shtyp, duke e konsideruar ngjarjen si vulnerabilitet aksidental që ndodhi për një kohë të shkurtër dhe u rikuperua shpejt. [...]

18 01, 2019


Russian-Based Hackers Behind Ryuk Ransomware’s $2.5 Million Gains 


A recent spate of ransomware attacks estimated to have earned hackers 705.08 Bitcoin (BTC) ($2.5 million) likely came from Russian cybercriminals, not North Korean state-sponsored actors as initially thought. The development was reported on The Next Web’s crypto-focused news site Hard Fork on Jan. 14.Hard Fork cites evidence from cybersecurity research teams McAfee Labs and Crowdstrike, which have analyzed the strategies used in developing and disseminating the Ryuk ransomware strain, and concluded that the identity and motivations


21 11, 2018


3rd International Scientific Conference on "Computer crime, cyber crime and national security" 


On 21 November 2018, the Science Research Center at the Security Academy, in cooperation with the North Atlantic Treaty Organization (NATO), the National Authority for Electronic Certification and Cyber Security (AKCESK) and the University of Aleksander Moisiu Durrës (UAMD) and with the support of the Organization for Security and Co-operation in Europe, the Presence in Albania (OSCE), the PAMECA V Mission and the IPA / 2017 Project "Countering Serious Crime in the Western Balkans" organized the 3rd International Scientific Conference on: "Computer crime, cyber crime and national security". [...]

8 11, 2018


Bank Attacks Put Password Insecurity Back in the Spotlight 


Two separate attacks on banks in the United States and Pakistan revealed this week highlight once again the inherent weakness of a security practice that relies on passwords or knowledge-based credentials to protect critical information. International bank HSBC said it was a victim of a credential-stuffing and became aware of unauthorized access to online accounts between Oct. 4 and Oct. 14, according to a notice filed with the state of California. Credential stuffing attacks use [...}

2 11, 2018


Cisco security appliances under attack, still no patch available 


A vulnerability (CVE-2018-15454) affecting a slew Cisco security appliances, modules and firewalls is being exploited in the wild to crash and reload the devices.The vulnerability is in the Session Initiation Protocol (SIP) inspection engine of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software, and allows unauthenticated, remote attackers to cause [...}

Sep 2018


Trust services in Republic of Albania


(This article is published on the SEEDIG (South Eastern European Dialogue on Internet Governance) portal, which is an open, inclusive space for dialogue on Internet governance issues between stakeholders from South Eastern Europe and the neighbouring area)

In preparation for the cybersecurity month, the National Authority for Electronic Certification and Cyber Security (NAECCS) of Albania is releasing information on the regulation and use of electronic signatures, electronic identification and other trust services in the country.  According to the authority, there are now two accredited providers of trust services in Albania: the National Agency for Information Society, which provides trust services for the public administration and the private sector, and ALEAT, which provides services for citizens. In September 2018, there were 9668 qualified certificates (for electronic identification and electronic signatures) issued for civil servants and private entities, and 784 303 qualified certificates issued for citizens (and integrated into national ID cards). NAECSS reports that trust services are largely used for accessing electronic public services via the e-Albania portal, which currently offers a total of 1268 such services. Among these, 68 e-services require the use of electronic signatures, while 54 involve electronic stamps.

Find article on https://seedig.net/seesummary-september-2018/