web analytics

CYBER SECURITY IN ESTONIA 2024

,
Rate this post

In 2023, Estonia experienced an increase in cyberattacks due to geopolitical tensions, particularly stemming from the conflict between Russia and Ukraine. Estonia was also affected by international events, such as the Israel-Hamas conflict, which resulted in cyberattacks on critical infrastructure, including district heating systems. The overwhelming majority of these attacks were Distributed Denial-of-Service (DDoS), with a notable rise in their frequency and sophistication.

The document details several major incidents:

  1. DDoS attacks: The number of DDoS attacks skyrocketed, with 484 recorded in 2023—a 60% increase from the previous year. Some attacks were politically motivated, including those linked to Estonia’s support for Ukraine. One significant attack targeted Ridango, disrupting the country’s train ticketing system.
  2. Ransomware: Large Estonian companies, particularly in manufacturing, were targeted by ransomware attacks. A notable case involved two metal companies that lost millions of euros after their systems were compromised.
  3. Data breaches: Estonia also dealt with several data leaks. The most serious case involved the Asper Biogene company, where attackers stole the personal and health data of 10,000 individuals. Additionally, there was an incident where a software bug mixed up the medical records of hundreds of patients.
  4. Fraud: Phishing, telephone scams, and business email compromise (BEC) fraud also increased. Cybercriminals defrauded Estonian citizens of at least 8.3 million euros, with some schemes targeting businesses through compromised emails to redirect payments.
  5. Vulnerabilities: Zero-day vulnerabilities were particularly concerning in 2023, with incidents of attackers exploiting unpatched systems. Estonia stressed the importance of installing security updates and adopting preventive measures like two-factor authentication to counter cyber threats.

International Collaboration:

Estonia’s cyber defense was supported by its alliances with international partners. The document emphasizes the importance of collaboration and intelligence sharing between nations. Estonia’s National Cyber Security Centre (NCSC-EE) played a key role in these efforts, especially in response to attacks on critical infrastructure.

Cybersecurity Awareness:

RIA, Estonia’s State Information Authority, launched campaigns to raise cybersecurity awareness among both businesses and individuals. It also introduced the “Cybertest” platform, which offered training and testing for over 15,000 people from public and private organizations.

Looking Ahead:

The document concludes with a projection for 2024, expecting continued politically motivated attacks and a rise in sophisticated DDoS attacks. Estonia plans to further strengthen its cybersecurity posture by focusing on securing critical infrastructure and promoting digital resilience through collaboration with international partners.

Overall, the report highlights the need for constant vigilance, technological updates, and international cooperation in combating an ever-evolving cyber threat landscape.

Cyber-Security-in-Estonia-2024Download

Views: 1

LinkedIn
Twitter
Facebook
WhatsApp
Email

advisor pick´S post

Codrut Andrei
Cybersecurity Talent Crisis Today and Tomorrow by Codrut Andrei
Cybersecurity Talent Crisis Today and...
SCYTHE
Better Cybersecurity Metrics – SOC Metrics – Threat Hunting Metrics – Cyber Threat Intelligence (CTI) Metrics – Incident Response (IR) Metrics for CISOs by SCYTHE
Better Cybersecurity Metrics – SOC...
ACSC Australia
Personal Cyber Security First Steps by Australian Government – ACSC
Personal Cyber Security First Steps...
Joas Antonio
100 Security Operation Tools for SOCs by Joas Antonio
100 Security Operation Tools for...
Joas Antonio
Guide for Multi-Cloud Read Team AWS – GCP – AZURE by Joas Antonio
Guide for Multi-Cloud Read Team...
SANS
SANS Faculty Cybersecurity Free Tools – SANS Instructors have built more than 150 open source tools that support your work and help you implement better security.
SANS Faculty Cybersecurity Free Tools...
Marcos Jaimovich
The Silent Spectre Haunting Your Network: QPhishing, the CISO’s Unspoken Nightmare.
The Silent Spectre Haunting Your...
Marcos Jaimovich
Goodbye to Traditional: Why Conventional Cybersecurity Tools are No Longer Sufficient for the Future of Digital Threats ?
Goodbye to Traditional: Why Conventional...
Marcos Jaimovich
Why do we compare a SOC (Security Operations Center) with the cockpit of a commercial airplane? by Marcos Jaimovich
Why do we compare a...
Joas Antonio
Security Operations Center (SOC) – Tools for Operations Development by Joas Antonio
Security Operations Center (SOC) –...
IZZMIER
Incident Response Playbooks & Workflows Ready for use in your SOC & Redteams
Incident Response Playbooks & Workflows...
LOGPOINT
396 Use Cases & Siem Rules Code ready for use for Mitre Attacks Events Detection in Your SOC by Logpoint
396 Use Cases & Siem...

LASTEST PUBLISHED POSTS

DevSecOps Guide
Attacking Rust
Attacking Rust
DevSecOps Guide
Attacking Pipeline
Attacking Pipeline
DevSecOps Guide
Attacking Golang
Attacking Golang
HADESS
Assembly for Hackers
Assembly for Hackers
BIONIC
Application Security Posture Management
Application Security Posture Management
Wallarm
API ThreatStatsTM Report
API ThreatStatsTM Report
Wallarm
API Security Checklist
API Security Checklist
DevSecOps Guide
ANSIBLE PLAYBOOKS
ANSIBLE PLAYBOOKS
Dr. Gemma GALDON CLAVELL
AI Auditing
AI Auditing
RAND
Securing Al Model Weights
Securing Al Model Weights
GDPR
CYBERSECURITY INCIDENT RESPONSE PLAN 1
CYBERSECURITY INCIDENT RESPONSE PLAN 1
KPMG
Cyber security guide for SMEs
Cyber security guide for SMEs

More Latest Published Posts

Victor Tong
Digital Operational Resilience Act – Control Mappings
Digital Operational Resilience Act – Control Mappings
ARMIS
DORA Resiliency Guide Strengthening Cybersecurity and Operational Resilience in the Financial Sector
DORA Resiliency Guide Strengthening Cybersecurity and Operational Resilience in the Financial Sector
IGNITE Technologies
Docker Penetration Testing
Docker Penetration Testing
IGNITE Technologies
Disk Group Privilege Escalation
Disk Group Privilege Escalation
Hiral Patel
Data LossPrevention(DLP)
Data LossPrevention(DLP)
Polygon
Digital identity – Deutsche Bank Corporate Bank
Digital identity – Deutsche Bank Corporate Bank
CSA Cloud Security Alliance
The Six Pillars of DevSecOps:Collaboration andIntegration
The Six Pillars of DevSecOps:Collaboration andIntegration
ASPIRE SYSTEMS
A complete guide toImplementingDevSecOps in AWS
A complete guide toImplementingDevSecOps in AWS
GAO
CYBERSECURITY PROGRAM AUDIT GUIDE
CYBERSECURITY PROGRAM AUDIT GUIDE
Apress
Demystifying Intelligent Multimode Security Systems An SystemsAn Edge-to-Cloud Cybersecurity Solutions Guide
Demystifying Intelligent Multimode Security Systems An SystemsAn Edge-to-Cloud Cybersecurity Solutions Guide
PWC
Data Privacy Handbook
Data Privacy Handbook
CERT-EU
DDoS Overview and Response Guide
DDoS Overview and Response Guide
IGNITE Technologies
Data Exfiltration Cheat Sheet
Data Exfiltration Cheat Sheet
CRC Press
Data Privacy for the Smart Grid
Data Privacy for the Smart Grid
New York State
Cybersecurity Program Template A resource to help individual licensees and individually owned businesses develop a cybersecurity program as required by New York State’s Cybersecurity Regulation 23 NYCRR Part 500
Cybersecurity Program Template A resource to help individual licensees and individually owned businesses develop a cybersecurity program as required by New York State’s Cybersecurity Regulation 23 NYCRR Part 500
Apress
Cyber Security on Azure An IT Professional’s Guide to Microsoft Azure Security
Cyber Security on Azure An IT Professional’s Guide to Microsoft Azure Security
CyberJA
ASSET IDENTIFICATION & CLASSIFICATION-A CRITICAL COMPONENT OF CYBER RISK MANAGEMENT
ASSET IDENTIFICATION & CLASSIFICATION-A CRITICAL COMPONENT OF CYBER RISK MANAGEMENT
SOSAFE
CybercrimeTrends 2024 The latest threats and security best practices
CybercrimeTrends 2024 The latest threats and security best practices
Routledge
Cyber Security Politics Socio-Technological Transformations and Political Fragmentation
Cyber Security Politics Socio-Technological Transformations and Political Fragmentation
Cigref
Surviving a Massive cyber-attack by Cigref
Surviving a Massive cyber-attack by Cigref
Hidaia Mahmood Alassouli
Common Windows, Linux and Web Server SystemsHacking Techniques
Common Windows, Linux and Web Server SystemsHacking Techniques
Splunk
SPLUNK® AND THE CIS CRITICALSECURITY CONTROLS Mapping Splunk Software to the CIS 20 CSC Version 6.0
SPLUNK® AND THE CIS CRITICALSECURITY CONTROLS Mapping Splunk Software to the CIS 20 CSC Version 6.0
SOC SIEM Use Cases
SOC SIEM Use Cases
safecode
Six Pillars of DevSecOps- Collaboration and Integration
Six Pillars of DevSecOps- Collaboration and Integration
SentineOne
WatchTower I ntelligence-Driven Threat Hunting
WatchTower I ntelligence-Driven Threat Hunting
CNIL
Security of Personal Data
Security of Personal Data
OPSWAP
Securing ICS SCADA updates OT Environments
Securing ICS SCADA updates OT Environments
Top 300 Azure Sentinel Used Cases KQL (Kusto Query Language) queries
Top 300 Azure Sentinel Used Cases KQL (Kusto Query Language) queries