Merge pull request #404 from DIVD-NL/main

Merge main into staging
DIVD-NL · Jul 21, 2024 · 0b2b605 · 0b2b605
2 parents faa9617 + d343787
commit 0b2b605
Show file tree

Hide file tree

Showing 3 changed files with 135 additions and 62 deletions.
diff --git a/content/newsroom/articles/case-ivanti.en.md b/content/newsroom/articles/case-ivanti.en.md
@@ -12,7 +12,7 @@ faq:
 ---
 On Monday, July 24, 2023, it became clear that the Norwegian government had fallen victim to a cyberattack. The Norwegian Government Security and Service Organisation (DSS) and the Norwegian National Security Authority (NSM) reported that they had been targeted in an attack on an ICT platform used by 12 ministries. And they were not the only victims, as revealed by the story of Tor Bjørsted and Erlend Leiknes, two researchers from the company Memnonic (1). 
 
-###### Zerodays
+#### Zerodays
 
 Bjørsted and Leiknes could not share the names of other affected entities. 
 
@@ -32,11 +32,11 @@ CVE-2023-35078 allows an unauthenticated attacker to access the API remotely and
 
 CVE-2023-35081 is a path traversal vulnerability, which, when combined with CVE-2023-35078, allows code execution on the EPMM server. It appeared that the attacker used the vulnerabilities in conjunction with a third vulnerability in Ivanti Sentry. It took a bit longer to find this third vulnerability (CVE-2023-38035). Eventually, Bjørsted and Leiknes succeeded, and the entire chain was revealed.
 
-###### high value target
+#### High value target
 
 To avoid suspicion, the attacker first hacked a router belonging to ordinary Norwegian citizens, from there, they contacted the vulnerable EPMM server, which was used as a pivot to gain access to the Sentry server, which gives access to, for example, the Microsoft Exchange server. The attacker first hacked routers belonging to ordinary Norwegians, so the attack did not come from a suspicious IP-address. The attacker used the first vulnerability to gather information from the Ivanti server and used the path traversal vulnerability (CVE-35081) to run code on the EPMM server, which allowed the attacker through CVE-38035 to access Ivanti Sentry. The Sentry server is a high-value target for a threat actor. It is the system that, in the case of the Norwegian government, was used to gain access to the Microsoft Exchange server. On August 21, 2023, Ivanti warned its customers that a critical Sentry API bypass vulnerability was being exploited in the wild.
 
-###### Vulnerable devices in the netherlands
+#### Vulnerable devices in the Netherlands
 
 On July 25th, the DIVD initiated a scan for CVE-2023-35078. An initial query on Shodan revealed 2,900 devices worldwide as vulnerable. A subsequent scan conducted on July 26th identified 1209 vulnerable devices, including some located in the Netherlands. The DIVD has notified the owners of these vulnerable systems and is also communicating with trusted information-sharing partners for targeted notifications. By July 28th, the number of vulnerable devices had decreased to 933.
 

diff --git a/content/who-we-are/team/_index.en.md b/content/who-we-are/team/_index.en.md
@@ -3,80 +3,79 @@ type: team
 title: The Team
 opener: Meet our Team
 intro: >-
-  We're very grateful and proud of all our team members, who voluntary dedicate
-  their free time for a great cause. Our team is a mix of different people; some
-  are just starting out in cybersecurity, while others have been in it for a
-  long time. 
+  We are very grateful and proud of all our team members who voluntarily
+  dedicate their free time to this great cause. Our team is a diverse mix of
+  individuals, with some just starting out in cybersecurity and others who have
+  been in the field for a long time.
 
 
   Not every member has a profile picture or is listed in a team. Privacy matters!
 in_progress: false
 teams:
   - title: Board
-    description: The board of directors is responsible for strategic leadership of DIVD.
+    description: At the head of DIVD is our board, providing guidance, direction,
+      and making strategic decisions. The day-to-day operations are managed by a
+      team that includes our director, department heads, the CISO, and the
+      crisis manager.
     members: []
   - title: Management
   - title: DIVD-CSIRT
-    description: The CSIRT is the engineblock of DIVD. It is responsible for
-      scanning the internet and notifying the system owners as well as running
-      our CVE Numbering Authority activities.
+    description: The CSIRT (Computer Security Incident Response Team) is the beating
+      heart of DIVD, responsible for scanning the Internet and notifying system
+      owners of the vulnerabilities found in their systems. Within the CSIRT,
+      the team of CNA Administrators is responsible for DIVD's role as CVE
+      Number Authority (NA). They can independently assign CVE numbers and
+      update CVE records for vulnerabilities within our scope.
     members: []
   - title: Research & Development
-    description: DIVD has two teams highly skilled security researchers who seek and
-      report vulnerabilities as a voluntary service next to their jobs. DIVD
-      sees to it they follow our Code of Conduct while we provide them a
-      firewall for journalists, lawyers and recruiters. Meanwhile, their
-      research also serves as an empirical base to discover trends in security,
-      stimulate security awareness and develop new methodologies in
-      vulnerability research and disclosure. So, although you will probably
-      never meet our researchers, you may hope they are checking your systems
-      right now, before the bad guys do…
+    description: DIVD has two teams of highly skilled security researchers who
+      voluntarily seek out and report vulnerabilities alongside their regular
+      jobs. DIVD ensures they adhere to our Code of Conduct while providing a
+      buffer against journalists, lawyers, and recruiters. Their research not
+      only uncovers security trends and raises awareness but also helps develop
+      new methods for vulnerability research and disclosure. Although you may
+      never meet our researchers, you can hope they are inspecting your systems
+      right now, catching issues before the bad guys do....
+    members: []
+  - title: IT Services
+    description: This department manages our applications and infrastructure,
+      including our own AS and the systems used by CSIRT and the Research &
+      Development team to scan the internet. They handle the technical
+      maintenance of our websites and have a development team that supports the
+      teams by creating tools to automate tasks.
     members: []
-  - title: IT services
-    description: Taking care of the IT of hackers in a non-hacky way so they don’t
-      get hacked.
-    members:
-      - /who-we-are/team/people/bart-reedijk
-      - /who-we-are/team/people/bert-kiers
-      - /who-we-are/team/people/casper-kuijper
-      - /who-we-are/team/people/geert-langendam
-      - /who-we-are/team/people/jan-van-stijn
-      - /who-we-are/team/people/jeroen-van-der-broek
-      - /who-we-are/team/people/marco-heijkoop
-      - /who-we-are/team/people/nathan-van-buuren
-      - /who-we-are/team/people/raymond-schuiling
-      - /who-we-are/team/people/rob-blokland
-      - /who-we-are/team/people/ronald-beiboer
-      - /who-we-are/team/people/ruben-uithol
-      - /who-we-are/team/people/sigurd-hoenkamp-de-vries
-      - /who-we-are/team/people/tirza-dijkstra
-      - /who-we-are/team/people/waldo-de-borst
-      - /who-we-are/team/people/winko
   - title: People & Culture
-    description: ""
-    members:
-      - /who-we-are/team/people/astrid-oosenbrug
-      - /who-we-are/team/people/jan-los
-      - /who-we-are/team/people/kato-vierbergen
-      - /who-we-are/team/people/maartje-jackel
-      - /who-we-are/team/people/manon-de-graaf
-      - /who-we-are/team/people/roxane
+    description: This department is responsible for the onboarding, offboarding,
+      training, and coaching of our volunteers. The People & Culture team
+      advises managers and team leaders in the organisation to support people in
+      those roles to enable engagement, helping to make sure that everyone
+      involved with the organisation enjoys their time at DIVD.
+    members: []
   - title: Communications
-    description: Translating l33tsp3ak to human and the other way around as well as
-      maintaining this awesome website.
-    members:
-      - /who-we-are/team/people/gerard-janssen
-      - /who-we-are/team/people/heidi
-      - /who-we-are/team/people/marieke-smits
+    description: >
+      The communications department handles internal and external
+      communications, events, and merchandise. It showcases DIVD's work both
+      nationally and internationally through blogs on our website, press
+      releases to relevant media, and posts on social media channels. This
+      department ensures our experts are visible at key cybersecurity and hacker
+      events. Additionally, the PR office is responsible for building and
+      maintaining relationships with our partners, keeping them engaged with our
+      activities.
+    members: []
   - title: Governance, Risk & Compliance (GRC)
-    description: ""
+    description: The GRC department ensures our security is top-notch and that we
+      comply with all relevant rules and regulations. In addition to the
+      Security Office, the GRC department includes privacy officers, a crisis
+      manager, and the Ethical Committee.
     members: []
   - title: Office
     description: Providing some sense of direction to a bunch of hackers, aka
       advanced cat herding.
     members: []
   - title: Project Office
-    description: ""
+    description: The Project Office is a centralized entity within the DIVD
+      responsible for standardizing and overseeing project management practices
+      and processes.
     members: []
   - title: Advisory board
     description: ""

diff --git a/content/who-we-are/team/_index.nl.md b/content/who-we-are/team/_index.nl.md
@@ -1,13 +1,87 @@
 ---
 type: team
 title: Het Team
+opener: Ontmoet ons Team
+intro: >-
+  We zijn erg dankbaar en trots op al onze teamleden, die vrijwillig hun vrije
+  tijd inzetten voor dit goede doel. Ons team bestaat uit een mix van
+  verschillende mensen; sommigen beginnen net met het leren over
+  cyberbeveiliging, terwijl anderen er al geruime tijd in werkzaam zijn. 
+
+
+  Niet elk lid heeft een profielfoto of staat vermeld in een team. Privacy is belangrijk!
 teams:
-  - title: Supervisory board
-    description: Since everyone at the DIVD is a volunteer we all share a similar
-      passion for creating a safer digital world while simultaneously reporting
-      cybercrime.
+  - title: Bestuur
+    description: "Aan het hoofd van DIVD staat ons bestuur. Het bestuur geeft
+      leiding, bepaalt de koers en neemt strategische beslissingen. De
+      dagelijkse operaties worden geleid door een team dat bestaat uit onze
+      directeur, afdelingshoofden, de CISO en de crisismanager. "
     members: []
-  - title: Board
-    description: Never bored always on board
+  - title: Management
+    members: []
+  - title: DIVD-CSIRT
+    description: Het CSIRT (Computer Security Incident Response Team) is het
+      kloppende hart van DIVD, verantwoordelijk voor het scannen van het
+      internet en het op de hoogte stellen van systeemeigenaren van de gevonden
+      kwetsbaarheden in de systemen. Binnen het CSIRT is het team van CNA
+      Administrators verantwoordelijk voor de rol van DIVD als CVE Number
+      Authority (NA). Zij kunnen zelfstandig CVE-nummers toewijzen en
+      CVE-records bijwerken voor kwetsbaarheden binnen onze scope.
+    members: []
+  - title: Research & Development
+    description: DIVD heeft twee teams van zeer bekwame security researchers die
+      naast hun reguliere werk vrijwillig kwetsbaarheden opsporen en
+      rapporteren. DIVD waarbrogt dat deze onderzoekers zich aan onze "Code of
+      Conduct" houden en onbezorgd hun werk kunnen doen, zonder dat ze worden
+      belemmerd door journalisten, advocaten en recruiters. Hun onderzoek brengt
+      niet alleen securitytrends aan het licht en zorgt voor een grotere
+      security awareness, maar helpt ook bij het ontwikkelen van nieuwe methoden
+      voor het onderzoeken en openbaar maken van kwetsbaarheden. Hoewel u onze
+      onderzoekers misschien nooit zult ontmoeten, kunt u hopen dat ze op dit
+      moment uw systemen inspecteren en kwetsbaarheden ontdekken voordat de
+      slechteriken dat doen....
+    members: []
+  - title: IT Services
+    description: Deze afdeling beheert onze applicaties en infrastructuur, waaronder
+      ons eigen AS en de systemen die door CSIRT en het Research & Development
+      team worden gebruikt om het internet te scannen. Ze zorgen voor het
+      technisch onderhoud van onze websites en hebben een ontwikkelteam dat de
+      teams ondersteunt door tools te maken om taken te automatiseren.
+    members: []
+  - title: People & Culture
+    description: Deze afdeling is verantwoordelijk voor de onboarding, offboarding,
+      training en coaching van onze vrijwilligers. Het People & Culture-team
+      adviseert managers en teamleiders om de mensen in hun functie te
+      ondersteunen en betrokkenheid mogelijk te maken, zodat iedereen die zich
+      inzet voor de organisatie het naar zijn zin heeft bij DIVD.
+    members: []
+  - title: Communications
+    description: De communicatieafdeling houdt zich bezig met interne en externe
+      communicatie, evenementen en merchandise. De afdeling brengt het werk van
+      DIVD nationaal en internationaal onder de aandacht door middel van blogs
+      op onze website, persberichten voor relevante media en berichten op
+      sociale mediakanalen. Deze afdeling zorgt ervoor dat onze experts
+      zichtbaar zijn op belangrijke evenementen op het gebied van
+      cyberbeveiliging en hacking. Daarnaast is het PR-kantoor verantwoordelijk
+      voor het opbouwen en onderhouden van relaties met onze partners, zodat zij
+      betrokken blijven bij onze activiteiten.
+    members: []
+  - title: Governance, Risk & Compliance (GRC)
+    description: De GRC-afdeling zorgt ervoor dat onze beveiliging van het hoogste
+      niveau is en dat we voldoen aan alle relevante wet- en regelgeving. Naast
+      het Security Office omvat de GRC-afdeling privacy officers, een
+      crisismanager en het Ethical Committee.
+    members: []
+  - title: Office
+    description: Geeft richting aan onze vrijwilligers.
+    members: []
+  - title: Project Office
+    description: Het Project Office is een centrale afdeling binnen de DIVD die
+      verantwoordelijk is voor het standaardiseren en overzien van Project
+      Management Praktijken en Processen.
+    members: []
+  - title: Advisory board
+    members: []
+  - title: Ethics Committee
     members: []
 ---