Media
Festive opening of new second location NFIR in Zwolle
The garlands hung ready, glasses were raised and over 50 people were eagerly awaiting the big moment: the opening of our new workplace in Zwolle!

Looking back on a successful Hackerhotel 2023
The 2023 edition of Hackerhotel is over! From February 10 to February 12, the Garderen-based Westcord Hotel was visited by hundreds of hackers, tech enthusiasts

Mark Jan Berben (Alphatron Medical): “With this program, you make employees aware and therefore resilient.”
In January 2022, Alphatron Medical started as a launching customer with NFIR’s Awareness Program. In a conversation with Mark Jan Berben, operations manager of Alphatron

ProxyNotShell: New vulnerabilities in Microsoft Exchange Server (CVE-2022-41040, CVE-2022-41082) (update)
Update January 2, 2023 Microsoft has released Nov. 8, 2022 security updates for Exchange Server 2013, 2016 and 2019. These protect against CVE-2022-41040 and CVE-2022-41082.

The 2022 Wrap-Up with Arwi van der Sluijs: ‘2022 is a clear break from trends’
So between one of his last board meetings this year and preparing for the year-end speech, I interview Arwi van der Sluijs (NFIR’s general manager)

Ethical hacker NFIR explains how easy hacking really is in broadcast Atlas
On Wednesday night, November 30, Mathijs van der Pol and Renushka Madarie were featured on Atlas, an NPO program. Van der Pol is an ethical

NFIR Threat Intelligence Report on critical vulnerability in Citrix
Citrix Applicaton Delivery Controller, or ADC (formerly NetScaler ADC) is a solution for application delivery and load balancing. It is used to facilitate applications within enterprise environments. Citrix Gateway is an on-premise solution that facilitates remote access and provides access to apps and resources.

New vulnerabilities in Apache Commons Text (CVE-2022-42889) – Text2Shell
On Oct. 18/19, 2022, a blog published by GHSL1 researcher Alvaro Muñoz (@pwntester) found vulnerabilities in Apache Commons Text. A bug in the Apache Commons

Week of Security: Security Awareness live event
On October 11, NFIR B.V. is organizing a free online Security Awareness event in collaboration with Awaretrain. You are cordially invited to attend this event!

What impact does a ransomware attack have on my organization?
The number of ransomware attacks in the Netherlands is large and even increasing. In a recent survey, nearly three-quarters of Dutch companies surveyed said they

NFIR hosts its first MDR Seminar: the importance of monitoring, governing privacy and legal resilience
June 30, 2022, Utrecht From the heart of the Netherlands, NFIR hosted its first Managed Detection and Response (MDR) Seminar on Thursday, June 30, 2022.

NFIR Threat Intelligence Report on vulnerability in Confluence (CVE-2022-26134)
On June 2 and 3, 2022, information was published about a vulnerability in Atlassian’s Confluence products that could allow attackers to gain full access to

What does security monitoring do for my network security?
The goal of our MDR services is to unburden and support your organization in the area of Security Monitoring. NFIR monitors the most common log

Threat Intelligence Report regarding BIG-IP F5 Firewall vulnerability (CVE-2022-1388)
On May 9, 2022, additional information was published about a vulnerability in the iControl REST API of F5’s BIG-IP firewall products that could allow attackers

Threat Intelligence Report regarding WSO2 vulnerability (CVE-2022-29464)
On Tuesday, April 25, 2022, the Dutch National Cyber Security Center (NCSC) published a security advisory in response to published security patches for WSO2 products.

NFIR Threat Intelligence Report – Indications that vulnerability Spring4Shell (CVE-2022-22965) may be actively exploited
Description Spring Core Framework is a collection of Java software libraries that can be used in software programs written in Java. Spring Core is embedded

This Spring4Shell flow chart helps you make the right decisions
In recent days, many organizations have asked for our help in making the right decisions around applications in response to the Spring4Shell vulnerability. More and

NPO Radio 1 interviews NFIR on what to do in case of data breach
The notification that a password is involved in a data breach usually causes a lot of stress, including Gavin Mooij who is a reporter for

NFIR receives the CCV Pentest Seal of Approval
On January 27, 2022, Daniël Knot and Marjolein Veenstra of KIWA presented NFIR with the pentest hallmark of the Center for Crime Prevention (CCV). Here

Police send mail for found login credentials with help from NFIR
The Hague – Recently, the cybercrime team of the police unit The Hague received information from the Dutch cybersecurity company NFIR that files containing thousands

NFIR ISO9001 and ISO27001 certified
After being certified for ISO27001 in 2020, we are now proud to add ISO9001 to our certifications. With the addition of this certification, NFIR demonstrates

NFIR and Awaretrain official partner
It’s official! NFIR recently signed the partner agreement with Awaretrain. Awaretrain has thus become our regular supplier of the e-learning modules in the awareness program.

This Log4J flow chart helps you make the right decisions
In recent days, many organizations have asked for our help in making the right decisions around applications following the Log4J vulnerabilities. More and more details

NFIR Threat Intelligence Report: Indications that vulnerability in ‘log4j’ library (CVE-2021-44228) may be actively exploited
On Friday, December 10, 2021, a Proof-of-Concept (PoC) was published for a vulnerability in the popular Java library “log4j”(https://logging.apache.org/log4j/2.x/). The vulnerability carries the official CVE