The Setup: A Ship Built of Paper In the North Sea of European regulation, a great vessel sails under the flag of NIS2. She is tall, wide, and armored with policies, directives, and the promise of resilience. But step below deck and the creaks are loud. Her sails are parchment, her ropes are policies, and
By Danny Zeegers — report for NIS2.news On Tuesday, 16 September 2025, senior leaders and incident responders from across Belgian finance, regulation and IT crowded into a workshop co-hosted by the Centre for Cybersecurity Belgium (CCB) and the SANS Institute. The session — an Executive Cyber Exercise facilitated by SANS veteran Chris Wilkes — dropped
The Invoice That Wasn’t It was a normal Monday morning. Sarah, who works in finance, opened her inbox and saw an email from one of the company’s regular suppliers. The subject line: “Outstanding Invoice – Please Review”. It looked genuine. The logo was there, the tone was professional, and the sender’s name matched someone she
If you only know the internal readiness concerning compliance and new digital technologies, you might win a few customer deals. If you don’t grasp the competitor side—and how compliance can add value—you’ll lose to those who do. NIS2 separates signal from noise. The organizations that win aren’t those who shout the loudest about the current
By Dean Blackquill – Writing from the fault lines of Europe’s cyber resilience The Challenge: Zero-Days as a Systemic Shock Zero-day exploits against Microsoft SharePoint on-premise continue to demonstrate how attackers can compromise critical infrastructure without ever knowing a username or password. By abusing software flaws directly, attackers bypass traditional login protections and gain system-level
The Wake-Up Call It was just another Monday morning until the CFO shouted:“Honey, our bank account is empty!” The systems all looked green. Password policies ✔. Encryption ✔. Multi-Factor Authentication ✔.Every compliance dashboard had the comforting checkbox: MFA enabled. But in reality, attackers had already hijacked sessions and bypassed the second factor entirely. The so-called
Schrijf je in voor de nis2.news nieuwsbrief en mis nooit het laaste nieuws over NIS2