Eddy Willems

Last updated
Eddy Willems
Born1962 (age 6364)
Alma materIHRB Anderlecht
Vrije Universiteit Brussel
Scientific career
FieldsAuthor
Information security
Malware

Eddy Willems (born 1962) is a Belgian cybersecurity expert, author, public speaker, and thought leader with nearly four decades of experience in malware research, cybercrime analysis, and cybersecurity advocacy. He is known internationally for his early involvement in identifying and mitigating some of the first ransomware threats, for co‑founding the European Institute for Computer Anti‑Virus Research (EICAR), and for his work in cybersecurity education through books, talks, and media appearances.

Contents

Early life and education

Willems was born in Belgium in 1962. He studied computer science at the Institute for Higher Education Brussels (IHB) and at the Vrije Universiteit Brussel (VUB), after which he began his professional career as a systems analyst in 1984.

Career

He served as  Global Security Officer and Security Evangelist at G DATA from 2010 [1] until late 2024 where he was involved in anti-malware and security research, consultancy, training and communication programs with press, resellers and end-users. He founded his cybersecurity consultancy company WAVCi (Willems Awareness, Vulnerability and Cybersecurity Insights), in 2014 and has been working exclusively for his own company since late 2024, where he continues his work independently. [2]

He started his career as a systems analyst in 1984, and while working at an insurance company he was challenged in 1989 by a Trojan incident, in fact a very early version of ‘ransomware’ malware, the AIDS Trojan Horse. His system got infected by inserting a (5.25’’) floppy with ‘aids/HIV’-related information (a questionnaire), resulting in a lock down of his system and a request to pay $189. [3] Figuring out how to get around this malware kindled Eddy Willems’ interest in computer viruses and resulted in a well received solution for this Trojan malware. Furthermore, it kick started his anti-virus and anti-malware career.

Eddy Willems developed his career as security specialist initially at an insurance company (De Vaderlandsche – today part of P&V), followed by an added value distributor of security products (anti-virus expert at NOXS - a Westcon Group company) and at security software specialist Kaspersky Lab (Benelux, security evangelist). [4]

As his expertise grew, Eddy Willems joined international computer security organizations. In 1991, he became a founding father of EICAR (the European Institute for Computer Anti-Virus Research). [5] In 1995, he joined Joe Wells’ Virus Wildlist, reporting for Belgium, Luxembourg & for EICAR Europe. In May 2005, he became a board member of EICAR, as director of Press and Information. In 2009, he took up the position of director for Security AV Industry Relationships. [6] Willems became a member and PR officer of AMTSO, the Anti-Malware Testing Standards Organization, joining its board in May 2012 [7] until July 2019. He was also a member of the AVAR (Association of Anti-Virus Asia Researchers) board from 2019 to 2024. [8]

In Belgium, Eddy Willems was a member of the first government initiated e-security team, on the website of the telecom regulator BIPT-IBPT. [9] In 2015, he joined the board of LSEC – Leaders in Security, an association grouping security companies active in Belgium and EU. [10]

Eddy Willems is active on the speakers circuit, with presentations for companies and consumers, as well as at conferences (see Publications section). [2] [11] . [12] [13]

He has been asked for comments and opinions by radio and TV-stations, both international (CNN, [14] Al Jazeera [15] ), TRT World [16] and national (Belgium: VRT, [17] VTM [18] ), and national newspapers (De Standaard, [19] De Morgen [20] ). Eddy Willems regularly publishes opinions in ict-magazines, as Data News (Belgium) [21] and ZDnet.be. [22]

Willems has worked with several security vendors and technology firms over the years, including roles as researcher and evangelist for companies such as Kaspersky, Westcon‑Comstor (NOXS), and G DATA CyberDefense. [4] He served as Global Security Officer and Security Evangelist at G DATA until late 2024, after which he founded his own consultancy, WAVCi (Willems Awareness, Vulnerability and Cybersecurity Insights), where he continues his work independently. [2]

Willems is the author and co-author of several books on cybersecurity for both technical and general audiences, including Cybergevaar (Dutch, Lannoo, 2013) [23] , Cybergefahr (German, Springer, 2015) [24] , Cyberdanger (English, Springer, 2019) [25] , and his science-fiction cyberthrillers Het Virus (Dutch, Lannoo, 2020) [26] and The Virus (English, Lannoo, 2025). [27] He has also co-authored numerous papers for international cybersecurity conferences, including Virus Bulletin [28] and AVAR, with notable contributions such as “Oops! It happened again” (Virus Bulletin, 2019) [29] and “Fool Us! … 11 ‘Fools’ years later” (Virus Bulletin, 2021), reflecting his expertise in malware analysis and cybersecurity research. [30]

Willems’ Laws

Willems’ Laws are principles formulated by Willems to explain key dynamics in cybersecurity. [31] The First Law states that the more popular a platform, the more it will be targeted by attackers. The Second Law expresses that cybersecurity problems (CSP) result from both technological factors (TF) and human factors (MF), summarized as CSP = TF × MF, highlighting the critical role of human behavior in creating security vulnerabilities.

Media

Willems is a keynote speaker, having delivered talks, workshops, and presentations at major cybersecurity conferences worldwide, including Virus Bulletin, AVAR, EICAR, InfoSecurity, CeBIT, FIRST, and more. [31]

He spoke at TEDxKULeuven on 13 May 2021, an event themed “Entering a New Era” in Leuven, Belgium. At the event, he addressed issues related to cybersecurity in the context of rapid technological and societal change. [32]

Awards

Willems has received multiple awards and honors for his speaking and contributions to cybersecurity, including best speaker awards at AVAR and AV‑Comparatives events and recognition as a contributor of the year from AMTSO, reflecting his influence and longtime involvement in the cybersecurity community. [8] [33]

Publications

Personal

Eddy Willems is married and has a son.

See also

References

  1. "G Data Benelux breidt team uit met Security Evangelist Eddy Willems (Dutch)". 20 October 2020.
  2. 1 2 3 "BIO Eddy Willems ReadMyLips Website - Public Speaker".
  3. "'We may think of ransomware as a modern invention, but the genius idea at the centre of it dates back more than two decades'".
  4. 1 2 "'Eddy Willems stapt over naar G Data' (Dutch)". 16 February 2010.
  5. Willems, Eddy (June 2003). "The Winds Of Change - Updates To The EICAR Test File (Article)" (PDF). Virus Bulletin.{{cite journal}}: Cite journal requires |journal= (help)
  6. "EICAR Board retrieved July 11th 2017". Archived from the original on 2018-09-20. Retrieved 2017-07-31.
  7. "AMTSO Board retrieved July 11th 2017". Archived from the original on 2017-11-05. Retrieved 2017-07-31.
  8. 1 2 "Hall of Honor - AVAR". aavar.org. Retrieved 2026-02-10.
  9. "'Vreselijkste superworm ooit' bedreigt miljoenen computers (Dutch)". 13 August 2003.
  10. "LSEC Board retrieved July 11th 2017".
  11. "Virus Bulletin Conference 2005 Teach your children well (Paper)".
  12. "Virus bulletin Conference 2010 Attacks from the Inside (Paper)".
  13. "Test Files and Product Evaluation: the Case for and against Malware Simulation (Paper)". AVAR Conference 2010. 2 November 2013.
  14. "CNN Transcript Interview Richard Quest with Eddy Willems: The Cloud and Security".
  15. "Appearances International Media".
  16. "TRT World - Search Results for: eddy willems". www.trtworld.com. Retrieved 2026-02-10.
  17. "VRT Radio Search". Archived from the original on July 31, 2017.
  18. "VTM news - Cyberattack in Belgium". Archived from the original on 2017-07-31. Retrieved 2017-07-31.
  19. "De Standaard Newspaper Eddy Willems Search".
  20. "De Morgen Newspaper - WannaCry comments".
  21. "DataNews opinions by Eddy Willems".
  22. "ZDNet Belgium opinions by Eddy Willems".
  23. "Cybergevaar". Goodreads. Retrieved 2026-02-05.
  24. Willems, Eddy (2015). Cybergefahr: Wie Wir Uns Gegen Cyber-Crime und Online-Terror Wehren Können. Thorsten Urbanski. Wiesbaden: Springer Fachmedien Wiesbaden GmbH. ISBN   978-3-658-04760-3.
  25. Willems, Eddy (2019-05-07). Cyberdanger: Understanding and Guarding Against Cybercrime. Springer. ISBN   978-3-030-04531-9.
  26. "Het virus". Goodreads. Retrieved 2026-02-05.
  27. "The Virus". blackwells.co.uk. Retrieved 2026-02-10.
  28. "Virus Bulletin :: 'Cyberdanger' informs general audience of IT security". www.virusbulletin.com. Retrieved 2026-02-05.
  29. "Virus Bulletin :: Oops! It happened again!". www.virusbulletin.com. Retrieved 2026-02-05.
  30. Willems, Eddy (2021-09-28). "Is it "Fool Us", or is it "Us Fools"?". www.gdatasoftware.com. Retrieved 2026-02-05.
  31. 1 2 "Eddy Willems – Keynote Speaker". London Speaker Bureau. Retrieved 2026-02-05.
  32. "TEDxKULeuven | TED". www.ted.com. Retrieved 2026-02-05.
  33. "The finalists of the Belgium's Cyber Security Personality of the Year". Belgium’s Cyber Security Awards. Retrieved 2026-02-10.
  34. Grooten, Martijn (24 February 2014). "'Cyberdanger' informs general audience of IT security". Virus Bulletin. Retrieved 15 August 2017.
  35. "Cybergevaar (first book by Eddy Willems)". 11 August 2015.
  36. Cybergefahr (second book by Eddy Willems - translation and update of the original 'Cybergevaar').
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.