Valencia, 10 February 2023. – This morning, the pilot or demonstration event of the system developed within the framework of the European security project CYRENE, an initiative co-financed by the Horizon 2020 programme whose objective is to improve the security of information in the supply chain, was held in an online and face-to-face format.
This pilot consisted of testing and validating the CYRENE system within the framework of a simulated cyber-attack scenario in the Port of Valencia. During the demonstration, an attacker tried to access the port server using the credentials of one of the technicians, which are published on the dark web. The aim of this cyber-attack was to paralyse part of the port activity, interrupting the port services used in the call-forwarding process of the vehicle transport supply chain, a process in which the Port of Valencia interacts with customs, the terminal operator and the shipping agent.
Thanks to this pilot, which has been organised by the Fundación Valenciaport in collaboration with the rest of the project partners, the importance of cybersecurity has been demonstrated, not only for companies but for the entire supply chain. In addition, the platform developed during the project has been validated, which allows, on the one hand, to monitor an infrastructure to detect intrusions, anomalies, vulnerabilities, etc. and, on the other hand, to analyse risks and threats in the entire supply chain.
The CYRENE project, led by Magglioli SPA and in which Fundación Valenciaport participates, has fourteen partners from ten European countries and a budget of around 5,000,000 €.
CYRENE will achieve its objective (improving supply chain information security) by providing a novel and dynamic Conformity Assessment Process (CAP) that assesses the security and resilience of supply chain services, the interconnected IT infrastructures that make up these services and the individual devices that support operations. In particular, the proposed Conformity Assessment Process will support the different supply chain security operators to recognise, identify, model and dynamically analyse cyber risks. In addition, it will support the anticipation, treatment and response to advanced persistent threats and manage daily cyber security and privacy risks, incidents and data breaches.