Accessibility

Accessibility

Text size

In all popular web-pages it is possible to increase and decrease font size by holding Ctrl-key (in OS X Cmd-key) and pressing “+” or “-“-key. It is very convenient to use mouse: holding Ctrl and scrolling mouse central scroll button. It is possible to go back to normal size pressing Ctrl and 0-keys.

If you think you see this text unintentionally

It might happen, that some elements of our webpage or platform did not arrive to you as planned, they are served from some buffer (cache). To resolve it, please try to do “hard refresh”, hold down Ctrl (Control) + Shift and click R.
For more information about hard refresh in different systems and browsers, please choose some of the results of Google Search: browser hard refresh.

Still no help with actual content?

Second option will be to try to clean up the cache on your own browser. Please choose some of the appropriate results of Google Search: browser clear cache.
After that, you might refresh your query again or order new login token to be sent to your email once again.

Still no help?

Sorry for inconvenience. Please take a snapshot of your browser configuration by visiting webpage www.whatismybrowser.com and send the unique link of it to EU CyberNet Headquarters by email .

Thank you!

Search

Members-only Seminar on Vulnerability Assessment

The 7th LAC4 members-only seminar, led by Sangsoo Jeong, joining from Seoul through the cooperation with CAMP and KISAs and expert Priit Kaup, focused on strengthening national approaches to Vulnerability Management and Assessments.

The session highlighted the vulnerabilities specific to the public sector, highlighting the limitations of traditional frameworks like the Common Vulnerability Scoring System (CVSS) and the risks posed by blind spots in existing assessment methods. Participants reviewed real-world case studies, including unauthorised transfers in Mexican banks, to understand practical implications and lessons learned. The session also introduced a new methodology combining CVSS with Exploit Prediction Scoring System (EPSS).

The second part of the seminar focused on examining the importance of adopting a risk-based methodology, assessing vulnerabilities according to business impacts and prioritising the most critical assets. Participants learned the need for clear asset ownership, management supports and the use of simple, meaningful metrics to track exposure and progress. The session also covered the common challenges of keeping a clean asset inventory and introduced practical methods for developing a reliable one.

Overall, the seminar provided LAC4 members with a comprehensive overview of public-sector vulnerability challenges, real-world incidentss and the limitations of traditional assessment frameworks. It also emphasised the value of a risk-based methodology, clear asset ownerships and practical tools for maintaining an accurate asset inventory.

Most important takeaways from the seminar:

  • Adopt a risk-based approach to vulnerability management, prioritising assets according to business impact and potential threat.
  • Establish clear asset ownership and ensure management support to maintain an effective vulnerability management programme.
  • Use practical tools and methodologies for scanning, analysiss and detection of vulnerabilities across networks and critical systems.
  • Prioritise remediation efforts on the most critical vulnerabilities, especially in government and critical infrastructure environments.
  • Build and maintain accurate asset inventories, including shadow IT, cloud resourcess and legacy systems, using both automated and manual methods.
  • Apply structured workflows and automation for patching and remediation, with compensating controls when immediate fixes are not possible.
  • Management support is vital for a well working vulnerability management program
  • Understand public-sector challenges and the limitations of traditional frameworks like CVSS.
  • Leverage new methodologies such as the combination of CVSS and EPSS to improve detection, prioritisations and response.
  • Learn from real-world cases and simulations to bridge theory with practical application, enhancing overall cyber resilience.
  • Shift from reactive to proactive strategies, integrating vulnerability assessment into broader cyber risk management practices.

LAC4 remains committed to supporting its members in enhancing their capabilities to identify, assess and mitigate vulnerabilities in critical systems. The seminar was attended by 170 stakeholders and policymakers from LAC4 Participant Nations. It was specifically designed for cybersecurity stakeholders and policymakers from LAC4 member countries, including Antigua and Barbuda, Colombia, the Dominican Republic, Ecuador, El Salvador, Guatemala, Honduras, Panama, Uruguay, the Bahamas and members of RedCLARA.

Keep reading similar articles
LAC4 Analysis: A Comparative Legal Analysis of Cybersecurity in LAC Region

LAC4 and EU CyberNet have published a comparative legal analysis of cybersecurity in Latin America and the Caribbean, titled “Cybersecurity in Latin America and the Caribbean: Towards a Legal Architecture and a Common Framework”. Analysis has been written by Jersain Zadamig Llamas Covarrubias and César Moliné Rodríguez, and reviewed by Juan Pablo González Gutiérrez.

Holiday Greetings

The LAC4 team wishes happy holiday season and is looking forward to 2026 with excitement!
LAC4 2025 Wrapped!

LAC4 2025 is wrapped: a year of strengthening cybersecurity and resilience across Latin America and the Caribbean. The LAC4 team wishes a happy holiday season and is looking forward to 2026 with excitement.

Watch the CyberWeek@LAC4 Aftermovie
LAC4 Steering Committee Met in Brussels

LAC4 Steering Committee gathered this week on 27 November in Brussels at the Permanent Representation of Estonia to the European Union to take a stock on past activities and discuss future actions.

CyberWeek@LAC4 2025 Wrapped: Building Borderless Resilience in Latin America and the Caribbean

CyberWeek@LAC4 2025 concluded today in Santo Domingo with 0ct0b3rf35t, a platform to offer informal exchange of national experiences and best practices in dealing with cyber incidents. Over the course of four days, more than 40 speakers from more than 20 countries took the stage to exchange knowledge with more than 150 participants from more than 30 countries for building regional cyber resilience and strengthen cooperation between LAC and European countries.

This site is managed and run by the Estonian Information System Authority

EU CyberNet® 2020-2026

Privacy Policy Contact