{"id":1493,"date":"2023-07-14T11:11:14","date_gmt":"2023-07-14T11:11:14","guid":{"rendered":"https:\/\/gb23.eco.de\/security\/"},"modified":"2024-07-10T11:06:25","modified_gmt":"2024-07-10T11:06:25","slug":"security","status":"publish","type":"page","link":"https:\/\/gb23.eco.de\/en\/topics\/security\/","title":{"rendered":"Security"},"content":{"rendered":"\n
\"\"<\/a><\/figure>\n\n\n\n

Security<\/h1>\n\n\n\n
\n
\n

The issue of security is of central importance to eco in order to strengthen trust in the Internet. In addition to various initiatives and services, a dedicated Competence Group deals with current security issues from an industry perspective. Another Competence Group, Anti-Abuse, is used for internal member dialogue on current anti-abuse issues. <\/p>\n\n\n\n

Once a year, eco surveys its member companies as part of the \u201cIT Security\u201d study to assess the threat situation, evaluate current security issues and analyse trends. The topics covered range from personnel and organisational security to protecting IT systems, securing mobile communication technology, security management issues and raising employee awareness. <\/p>\n<\/div>\n\n\n\n

\n
\"\"<\/figure>\n<\/div>\n<\/div>\n\n\n\n
\n
\n

A strong defence is not only a prerequisite for success in football. For medium-sized companies, IT security must also be integrated into the overall concept of corporate IT to successfully ward off attacks. On 26 April 2023, the Borussia Dortmund football club was among those who reported on how this could be achieved. Experts shared their expertise and best practices with around 50 participants at the German-language \u201cDortmund Protected<\/a>\u201d event.

After the IT Security Study 2023<\/strong> was finalised, on 3 March we presented<\/a> its results and analysis<\/strong> at the \u201cDortmund Protected: ESET Security Day\u201d at the BVB training ground.<\/p>\n\n\n\n

The study was officially published by the association on 11 April, with this entitled eco IT Security Study 2023: Many companies still underestimate the threat situation<\/a>. Also in March, Michael Weirich compared the results of the 2023 study with those of previous years as part of an IT security talk for it-sa 365.<\/p>\n<\/div>\n\n\n\n

\n
\"\"<\/figure>\n<\/div>\n<\/div>\n\n\n\n

\u201cCybersecurity in the supply chain<\/strong>\u201d and the \u201cSoftware Bill of Materials<\/strong> (SBOM)\u201d were the dominant topics at the first 2023 meeting<\/a> of the Security Competence Group on 3 May, which was held as an online-only event. The EU’s new NIS2 Directive and the planned EU Cyber Resilience Act were also noted to require SBOMs. \u201cSuppliers and users should familiarise themselves with SBOMs, as the provision of SBOMs will soon be required from suppliers in many market sectors. Users should already be demanding SBOMs from their suppliers, even if many providers are not yet in a position to provide them,\u201d stated Oliver Dehning, Head of the Security Competence Group at the eco Association. <\/p>\n\n\n\n

In today’s digital economy, the security of our supply chains is crucial for companies’ economic success. However, state-of-the-art supply chains are increasingly becoming the focus of attackers. The numerous interfaces and diverse systems offer multiple gateways for potential threats. <\/p>\n\n\n\n

\n
\n

\u201cThe frequency and complexity of attacks on supply chains are likely to increase, as they are more effective and potentially more lucrative for attackers than other attack scenarios\u201d, concluded the experts from the eco IT Security Competence Group at their German-language meeting on 22 November <\/a>at the eco Kubus in Cologne. Here, they developed tips and strategies on how companies can protect themselves: IT Supply Chain Security: eco Security Competence Group Develops 6 Tips<\/a>.<\/p>\n\n\n\n

\u201cModern software supply chains are becoming more vulnerable to attacks,” said Matthias Riedel from SAP. He gave a global overview of the economic and social consequences of attacks. “Attackers are exploiting security gaps and the trust between customers and service providers to spread malware or infiltrate networks\u201d, said Maik Wetzel from ESET in his presentation. Using prominent examples such as NotPetya, Kaseya and Solar Winds, Wetzel illustrated the far-reaching impact that attacks can have on the supply chain. <\/p>\n\n\n\n

In 2023, eco was again represented with a joint stand at it-sa<\/a> in Nuremberg. Together with our partners GlobalDots, NameShield, NorthC, and Plusserver, we were on hand to discuss current topics in the Internet industry with our visitors, and to present current projects and initiatives related to security and digital transformation.<\/p>\n<\/div>\n\n\n\n

\n
\"\"<\/figure>\n<\/div>\n<\/div>\n\n\n\n
\n
\n

Congresses and trade fairs<\/h2>\n\n\n\n

In 2023, eco was represented at numerous events and trade fairs relating to IT security. <\/p>\n\n\n\n

Together with our co-exhibitors GlobalDots, Nameshield Germany, NorthC Datacenters Germany and plusserver, we provided comprehensive information on the topic of cybersecurity at it-sa 2023<\/strong> and held many exciting discussions with visitors. Our Managing Director Alexander Rabe was also happy to welcome the Federal Office for Information Security (BSI) President Claudia Plattner to the eco joint stand. <\/p>\n\n\n\n

ISD 2023<\/h2>\n\n\n\n

The motto for the 2023 Internet Security Days was: Backup for Tomorrow<\/strong> and was divided into two parallel lecture series on four main topics: Achieving the State of the Art<\/em><\/strong>, Future Security, Digital Supply Chain Security<\/em><\/strong> and Connected Security<\/em><\/strong>.<\/p>\n\n\n\n

The approximately 250 participants per event day were offered 40 exciting presentations and panel discussions as well as numerous opportunities for networking and in-depth discussions. <\/p>\n\n\n\n

Read more about the 2023 Internet Security Days here<\/a>.<\/p>\n<\/div>\n\n\n\n

<\/div>\n<\/div>\n\n\n\n
\n
\n

Publications and short studies<\/strong><\/p>\n\n\n\n