Blog

Sodinokibi: prevention, identification and response

Sodinokibi uses the RaaS (Ramsonware as a Service) model, which favours its rapid spread. In this article we present some lines of action that should be followed in the case of having been a victim of this sophisticated malware or if it is suspected that it could have infected our systems.

Tags:

NetWalker ransomware: analysis and preventative measures

In the last few days there have been various reports, both nationally and internationally, of a ransomware campaign called NetWalker, also known as Mailto or Koko, which appears to target healthcare centers, taking advantage of the current state of alarm declared as a result of the COVID-19 pandemic.

Tags:

Sodinokibi: features and operation

The ransomware attacks have experienced a great evolution from its beginnings, being able to identify a great amount of different families at the present time, many of them are highly sophisticated, with high propagation and persistence. In this blog we explain what is Sodinokibi and how it works.

Tags:

Smart cars: are they prepared for threats?

Over the years, the automotive sector has been growing and evolving technologically. During this time, different deficiencies or vulnerabilities in smart cars have been discovered. For this reason, one of the key issues for this new type of vehicle is protection against possible threats.

Tags:

Emerging Threats to Industrial Control Systems

Over recent years we have witnessed how industrial controls systems are not exempt from being targeted for cyberattacks. In this article we look back at threats detected in recent years to see how we can defend ourselves against them.

Tags:

Incident

Industrial Control System

Malware

Threats

Cryptocurrency and its role in malware

It is increasingly common to find malware related to cryptocurrencies, either to use them as payment currency in extortions and illegal activities, cryptocurrency theft or infiltrate on systems and equipment from all areas to take advantage of the resources of the victims' equipment to undermine cryptocurrency

Tags:

Cybercrime

Malware

2017 Greatest Hits: Problems seeded in the past

The aim of Cybersecurity Highlights service is to gather all relevant news related to cybersecurity through the year. This is the article that summarizes those news that have been more important in 2017.

Tags:

Botnet

Critical infrastructures

CrashOverride: The malware for ICS is back again

Alarm bells ringing again –a new malware threats industrial networks. After the attack suffered in Ukraine with BlackEnergy and the failures occurred at the beginning of the year, other new malware is added to the list of attackers of industrial control systems started by Stuxnet

Tags:

Critical infrastructures

Industrial Control System

Malware

Threats

Advanced Cybersecurity for Mobile Platforms Course

Interested in learning about cybersecurity in mobile devices? This is the course for you!

Reservation for INCIBE's free course on Cybersecurity in Mobile Devices is now open on the Canvas Network and starts on 17 October.

Tags:

United Against Cyberthreats: Information Sharing

The well known motto "there is strength in numbers" perfectly describes the beneficial situation that involves collaboration and knowledge sharing on cyber threats. The concept of Information Sharing bring to us the idea of establishing methods to share and take full benefit of the gathered knowledge among all actors. Among these partners, CERT and security companies play a key role in defining consensus documentation and the pathway for sharing knowledge effectively.

Tags: