Home / Blog / Filter / Blog
Subscribe to INCIBE-CERT - Blog RSS

Blog

Specialized blog with informative contents destined to a public with marked technical profile, in order to improve knowledge and create a culture about the security in Internet.
Post related to: Critical infrastructures
Ransomware: preventive measures (I)

Ransomware: preventative measures (I)

Posted on 09/21/2021, by INCIBE
Cyberattacks using ransomware are one of the main threats for companies all over the world, and Spain is the tenth most affected country. This article, the first in a series dedicated to this subject, will provide a detailed list of recommendations for preventative measures dedicated to hardening in order to deal with such attacks.
Tags: 
Bastioning procedures
Best practices
Critical infrastructures
Cybercrime
Data protection
Firewall
Identity management
Incident
Malware
Policies
Ransomware measures
Services deployment
Threats
International cyberresilience frameworks for critical infrastructures

International cyberresilience frameworks for critical infrastructures

Posted on 09/16/2021, by INCIBE
This article reviews some of the most representative cybersecurity and cyberresilience frameworks that can be found in Spain, Europe, the US and the UK, and whose adoption can help organisations to further improve their cybersecurity protection capabilities.
Tags: 
Bastioning procedures
Best practices
Continuity
Critical infrastructures
Data protection
Incident
Legal compliance
Policies
Safe development
Studies & stats
Threats
Vulnerability
control of multicast requests in the IEC 61850 standard

Control of multicast requests in the IEC 61850 standard

Posted on 05/27/2021, by INCIBE
In previous articles an introduction was given to the 61850 regulation and the different protocols of which it consists. As explained in those articles, the GOOSE and SV (Sample Values) protocols, included in the standard, use multicast frames. Security is very difficult to implement in this type of frame, but there are a number of measures that make possible to raise the security level.
Tags: 
Best practices
Critical infrastructures
Data protection
Industrial Control System
Industrial protocol
Safe development
Threats

Pages