Pascal Goethuys

🔐 Under the "Secure Digital World" and ✨ "European Digital Policy" streams by the European Data Compliance Network EUDCN #future #knowledgesharing #eudcn

4

Something I have been working on for a while goes live on Monday. If you are an IT Director or Head of IT at a professional services firm — and Microsoft 365 Copilot is either already deployed or being discussed — it is probably worth a look. More on Monday.

5

🚨 Critical Security Alert for Organizations Using Citrix NetScaler 🚨 The Dutch National Cyber Security Centre has confirmed active exploitation of a high-severity zero-day vulnerability (CVE-2025-6543) in Citrix NetScaler ADC and Gateway appliances. This flaw—present in devices configured as VPN gateways or authentication servers—allows remote code execution and has already been linked to breaches in critical organizations, with attackers erasing logs to hide their tracks. Who’s at risk? Any organization running unpatched Citrix NetScaler ADC/Gateway versions prior to: 14.1-47.46 13.1-59.19 13.1-37.236 (FIPS/NdcPP) Why this matters: These appliances often sit at the network edge, making them prime targets for initial access in larger campaigns. Attackers have been exploiting this since May 2025—weeks before patches were released in late June. What to do now: ✅ Patch immediately to the latest versions ✅ Terminate all active sessions to remove potential backdoors ✅ Run detection scripts to check for indicators of compromise (malicious files, unknown accounts, web shells) ✅ Engage security teams for post-patch audits and incident response if needed 🔍 Lesson: Patching alone is not enough. Combine it with proactive monitoring, layered defenses, and a strong incident response plan. Stay safe out there. This one’s serious. #CyberSecurity #CVE20256543 #Citrix #NetScaler #ZeroDay #IncidentResponse #InfoSec Wortell

4

1 Comment

Dreaming of Fort Knox-level security 🏰, but stuck with a piggy bank budget? 🐷 You're not alone. The scary reality is that even the most advanced hardware can have vulnerabilities. Researchers at KU Leuven recently discovered a new hardware flaw, "Battering RAM," that can bypass security protections on widely used cloud processors. 😱 This means that your data could be at risk, even if you think it's secure. Read more about the research here: https://lnkd.in/erhrBiBD So, how can you protect yourself without breaking the bank? 🤔 This is where models like HSM-as-a-Service and PKI-as-a-Service come in. They provide access to top-tier security technology without the huge upfront investment and complex operational burden. You get the vault, we manage the keys. 🔑 Simple, right? Don't wait for a "Battering RAM" to hit your business. Take control of your security today! 💪 #AsAService #HSMaaS #PKIaaS #ManagedServices #Security #Cybersecurity #HardwareVulnerability #CloudSecurity

2

In a recent Software Gone Wild episode, Sander Steffann explained how CG-NAT could hinder fraud prevention (and why it's a good thing to move e-commerce clients to IPv6). More details (and a lot of other stuff) in https://lnkd.in/eeuqdP3P

46

1 Comment

📣 Mind and Linux Belgium join forces under OpenSource-Enterprise! We’re excited to present 𝗩𝗠𝗪𝗮𝗿𝗲 𝘁𝗼 𝗣𝗿𝗼𝘅𝗺𝗼𝘅: 𝗔 𝗽𝗿𝗮𝗰𝘁𝗶𝗰𝗮𝗹 𝗠𝗶𝗴𝗿𝗮𝘁𝗶𝗼𝗻 𝗣𝗮𝘁𝗵. 🚀 Virtualisation is changing fast. Rising licensing costs and vendor lock-in are forcing organisations to rethink their strategy. This event will showcase OpenSource technologies that actually work in production, helping your organisation stay secure, compliant, and future-proof. 💡 𝗪𝗵𝘆 𝗮𝘁𝘁𝗲𝗻𝗱? • Discover real-world lessons, strategies, and best practices • Explore our consultancy services and Proxmox certification trainings • Connect with experts and peers during the Q&A and reception Join us for an inspiring afternoon of learning, networking, and open-source innovation! 📍Thomas More Campus Geel (Belgium) 🕒 23 April 2026, 16:00-19:00 👉 𝗥𝗲𝗴𝗶𝘀𝘁𝗲𝗿 𝗻𝗼𝘄 𝗮𝗻𝗱 𝗹𝗲𝗮𝗿𝗻 𝗺𝗼𝗿𝗲: https://lnkd.in/etmAgj9t

24

In the last months, I've been focusing on NIS2, and one thing stands out: most boards of directors underestimate the shift from policy to personal accountability. April 2026 is not about documentation. It’s about evidence. If NIS2 is even remotely on your radar, this is the moment to act, not when auditors knock at your door.

7

"DNS Belgium wants to eventually remove its infrastructure from AWS and migrate to a European cloud provider. The administrator of the .be, .vlaanderen and .brussels internet extensions wants to further optimise its services in this way. At the same time, the organisation wants to set an example for others to no longer be dependent on non-European service providers in geopolitically turbulent times." https://lnkd.in/eypxvHJu

882

57 Comments

🔐 Physical security and IT infrastructure go hand in hand. Just signed a new contract with Telenet to manage access control for the building. One more step in the full structuring of our IT infrastructure — covering everything from: the network, to workstations, Microsoft 365, and now physical access security. Because PME don’t need a technician. They need a trusted IT partner who understands the real business challenges. Lots of work ahead — but each brick matters. #IT #Security #AccessControl #Telenet #ITPartner #Microsoft365 #Infrastructure #SMB #PME

6

📢 SERMA Safety and Security lab is accredited EUCC FR and NL. The game changes: Serma is the first lab to be double-accredited by two major EUCC schemes French and Dutch. We are pleased to offer the choice to our customers and futures one 😉 . TrustCB, Rijksinspectie Digitale Infrastructuur, ANSSI - Agence nationale de la sécurité des systèmes d'information, European Union Agency for Cybersecurity (ENISA)

22

Do you agree with Christophe about working on the helpdesk? 🎙️: Careers in the Cloud - EP32: Christophe Troessaert: Go From IT Novice to Freelance Cloud Expert Watch on YouTube: https://lnkd.in/ePPa9piM #TechPodcast #CareerAdvice #CareersInTheCloud

10

1 Comment

💡 What is an Application Load Balancer (ALB) in Azure? In Azure, it’s called the Azure Application Gateway — a Layer 7 (Application Layer) load balancer. It helps to distribute web traffic (HTTP/HTTPS) across multiple servers or web apps — so that no single server is overloaded. ⸻ 🧠 Simple Analogy: Think of it like a traffic police officer standing at a busy junction: • Cars = user requests (like people visiting your website) • Roads = your web servers or app instances • The officer (Application Gateway) directs cars to the least busy or healthiest road to keep traffic flowing smoothly. ⸻ ⚙️ How It Works — Step by Step: Let’s say you have a website like www.myshop.com hosted on multiple servers. 1. User Request Comes In A customer types www.myshop.com in their browser. 2. DNS → Application Gateway The DNS directs the user’s request to the public IP of your Application Gateway (the load balancer). 3. Application Gateway Checks Rules It looks at: • URL (e.g., /products, /login) • HTTP headers • Hostname Based on these, it decides which backend server or pool should handle it. 4. Health Probe Check Before sending traffic, it keeps checking all backend servers to ensure they’re healthy and running (like ping tests). If one is down, traffic is not sent to it. 5. Request Forwarded to Backend Pool It forwards the request to one of the healthy web servers or app services (based on load-balancing rules). 6. Response Sent Back The selected server processes the request and sends the response back to the user through the Application Gateway. 💻 Example Use Case: You run an online shopping site with: • Frontend: Application Gateway • Backend Pool: 3 web servers running the site When 10,000 customers visit: • The gateway splits the traffic evenly (e.g., 3,333 requests per server) • If one server fails → traffic automatically redirected to healthy ones • WAF protects your site from malicious requests #Azure Networking #Cloud #Networking

8

In May we launched our 6th annual cybersecurity report on the BeLux market. About 3 in 5 SMB's was not certain whether NIS2 regulation applies to them, in larger enterprises it drops to 1 in 8. (Im)proving your security maturity will become a license to operate in many industries. Proximus NXT Cybersecurity

13

What happens when a European operator moves its 5G core to the cloud? For the Telenet group, the shift to a cloud-native 5G core on Google Cloud is enabling faster service delivery, smarter AI-powered solutions, and new opportunities in maritime connectivity. Watch the session to see what’s next! https://lnkd.in/gJunmCq2

3