www.belgium.be Logo of the federal government

Vulnerability Eradication Project

What is Vulnerability Eradication?

Vulnerability Eradication is a project of the Centre for Cyber Security Belgium (CCB) to warn citizens and companies when they have a vulnerability on one of their computers. The CCB receives daily reports from its Cyber Security partners about vulnerabilities in our country. This information is passed on to internet service providers so that they can link the IP address to their customers to warn them. The goal of Vulnerability Eradication is to reduce the number of vulnerabilities in Belgium and prevent cyber attacks.

What should I do if I have received an alert?

If you have received an alert from your internet provider, a vulnerability has been found on your network. Find out which device is affected and take safety measures.

1. Which device?

A first step you can take is to find out exactly which device is vulnerable. You can do this by thoroughly reading the description of the vulnerability. Some vulnerabilities are linked to specific operating systems or devices.  If you have multiple devices with the same operating system, we recommend running the security measures (updating, anti-virus scan, etc.) on all of them. A visitor who uses your network and has accessed your Wi-Fi may also be vulnerable. If possible, notify this visitor.

2. Taking security measures

As a second step, it is best to follow the security measures described in the alert, for example by running a virus scan or an update. Learn more about the different types of vulnerabilities.

 

 

How does Vulnerability Eradication work?

Vulnerability Eradication

Vulnerability Eradication takes place in 5 steps.

  1. The CCB receives information about infected IP addresses from its cybersecurity partners.
  2. The CCB forwards this information to the internet provider.
  3. The ISP identifies the customers based on the IP address and time of day.
  4. The internet provider warns the customers.
  5. Customers take safety measures.   

 

Q&A

Waarvoor waarschuwt Vulnerability Eradication?

Vulnerability Eradication stuurt waarschuwingen voor kwetsbaarhedenEen kwetsbaarheid is een zwakke plek in jouw netwerk die kan worden misbruikt. Kwetsbaarheden op jouw netwerk houden risico’s in zoals onder meer het verlies van gegevens of de mogelijkheid om jouw bedrijf reputatieschade of financiële schade aan te richten.

Je kan het best zo snel mogelijk veiligheidsmaatregelen nemen. Deze veiligheidsmaatregelen zijn afhankelijk van de kwetsbaarheid, meer informatie.

Hoe vind ik de kwetsbaarheid in mijn netwerk?

What kind of warnings does Vulnerability Eradication include?

Vulnerability Eradication sends out alerts related to vulnerabilitiesA vulnerability is a weakness in your network that can be exploited. Vulnerabilities on your network carry risks that include the loss of data or the possibility of damage to your company's reputation or financial loss.

It is best to take safety precautions as soon as possible. These security measures depend on the vulnerability, moreinformation.

How do I detect the vulnerability in my network?

The internet provider only knows your external IP address. As a result, it is not possible to say which device is vulnerable. The CCB therefore recommends that safety measures be taken on all devices.  Some vulnerabilities only occur on a particular operating system (e.g. Windows, Android, iOS, etc.), which allows you to eliminate some devices. Learn more about the different types of vulnerabilities. If you have multiple devices with the same operating system, we recommend running the security measures (updating, anti-virus scan, etc.) on all of them.

Where does the CCB get this information from?

The information about the vulnerabilities is provided by various cybersecurity partners, both commercial and open-source information.

What information does the CCB have about me?

The CCB only knows the IP address and the timeof detection. The CCB is unable to determine who the IP address belongs to, which is why internet providers have to help. Internet service providers give IP addresses to their customers to grant them access to the Internet. They can find out who the customer is, by looking at the IP address and the time. The ISP can identify and alert the customers at the request of the CCB. Internet providers are legally not obliged to do this. Lastly, the CCB does not receive any information from the ISP about the affected customer.

Why is Vulnerability Eradication important?

Internet users are not always aware of the presence of vulnerabilities because they can go unnoticed. The Vulnerability Eradication project attempts to help internet users who are ignorant of the problem, by alerting vulnerable internet users. The purpose of Vulnerability Eradication is to reduce the number of vulnerabilities in Belgium and prevent cyber attacks.