The ThreatChase Consortium consists of 4 participants from 3 EU member states (France, Poland, and Portugal):
KOR Labs SAS is a university spin-off dedicated to combating cyber threats, helping the Internet community collectively increase barriers to abuse as well as companies to increase the effectiveness of their network protection and countermeasures. The team comprises security researchers with a strong academic track record and world-class expertise in cyber security and Internet technologies. The main focus of KOR Labs activities is on domain name and Domain Name System (DNS) abuse. The founders of KOR Labs are Prof. Maciej Korczyński and Prof. Andrzej Duda.
ORANGE Polska SA is a leader on the Polish market of fixed telephony, Internet, and data transmission. As the only operator, it offers comprehensive telecommunications solutions available throughout the country. Cybersecurity is one of key areas continuously developed in OPL. OPL CERT has already been operating for 25 years and it provides cybersecurity services to a wide range of customers protecting them against identified modern cyberthreats (DDoS, malware, phishing, applications vulnerabilities).
PDMFC LDA is an SME from Portugal, with a strong focus on the area of Information Security, having developed software that help dozens of large customers (including Governments) to detect fraud, money laundering, tax evasion, among many other things. It provides the Identity and Access Management framework (called SPA) that includes Real Time Risk Assessment, Segregation of Duties, Cryptographic fingerprinting of operations. PDMFC has experience in the Information Security-related area, manages several CSIRTs at national level (consultancy work), and develop Identity and Access Management Intelligence tools.
NovaForensic (legal name: Stability Bubble LDA) is a start-up from Portugal, founded by a former Law enforcement Agency crime investigator with a focus on the development of tools for Digital Forensics. Its tools are used by all LEA in Portugal to obtain relevant digital evidence for the crime (cyber-incident) under investigation. The NovaForensic objective is the evolution of digital forensic expertise through the adoption of the Forensic as a Service (FaaS) paradigm, which consists of the provision of forensic software in cloud computing enhanced by an artificial intelligence federated learning system.
All participants in the project are experts in cybersecurity but each of them brings some specific expertise.
KOR Labs (KOR) has expertise in data collection and classification. It has developed methods for searching for misconfigured DNS records that enable phishing attacks, networks vulnerable to IP spoofing enabling DDoS attacks, or domains vulnerable to zone poisoning attacks. It has also the methodology for suitable domain classification that will identify malicious or compromised domain names.
Orange Polska (OPL) is a leader on the Polish market of fixed telephony, Internet, and data transmission. As the only operator, it offers comprehensive telecommunications solutions available throughout the country. Cybersecurity is one of the key areas continuously developed in OPL. CERT Orange Polska is the operational structure responsible for the security of the Orange Polska Group (including its business units and subsidiaries). It operates already for 25 years and cybersecurity services are provided to wide range of customers protecting them against identified modern cyberthreats (DDoS, malware, phishing, applications vulnerabilities). CERT OPL has an extensive expertise in providing protection services against cyber threats and response to security incidents. Orange Polska is confronted with a large number of phishing attacks and will contribute to the project with innovative cybersecurity solutions oriented towards increasing the security of access to company systems and networks by mitigating the impact of phishing attacks. CERT OPL develops its own cybersecurity systems with the main goal of protecting information in OPL systems and service platforms.
PDMFC brings extensive experience on software development in the Information Security-related areas and large base of customers that will participate in tests and user trials. Its expertise in managing several CSIRTs at national level and the cooperation with Law Enforcement Agencies will be additional asset in the project.
NovaForensic (NF) brings digital forensic expertise to the project. Its experience with the provision of forensic software in cloud computing and expertise in federated learning will be complement the cybersecurity competence brought by other partners.
The project funded by the European Union under Grant Agreement No. 101128042 is supported by the European Cybersecurity Competence Centre. Views and opinions expressed are however those of the author(s) only and do not necessarily reflect those of the European Union or the European Cybersecurity Competence Centre. Neither the European Union nor the European Cybersecurity Competence Centre can be held responsible for them.