Blog

Malware and security tools on Mac OS

The existence of malware for Mac OS has gained especial importance since 2014. We are going to take a look at some of the most important threats and security tools that worth to know.

Tags:

2015 Cybersecurity Highlights log

Nobody can deny that computer security is a vital issue in our lives, affecting all of us. It is not uncommon to see articles on themes related to or speaking directly about computer security in newspapers or mainstream publications. The INCIBE_ Cybersecurity Highlights log aims to gather together articles published on events or incidents related to computer security based on their importance...

Tags:

Android

Apple

Critical infrastructures

Physical security and cybersecurity go hand in hand: CCTV

In recent years different news has emerged linked to webcam and IP camera attacks, such as the vulnerabilities of any system, embedded credentials, and the most well-known, open cameras without a password... as well as many other examples. These security failures are not alien to more professional systems such as video recorders or DVRs and closed-circuit television or CCTV cameras. A few...

Tags:

Domestic routers in the spotlight

In INCIBE, using ours sensors, specialized attack campaigns against home routers were detected. From the data obtained it is concluded that the security of home routers remains a point forgotten. In this article the results and conclusions of the analysis are presented.

Tags:

Best practices

Malware

Threats

Combatting Ransomware

Given the widespread use of Information and Communications Technology (ICT) in all areas of society, a series of threats against Society have appeared in cyberspace, and they occur in different forms: cybercrime, cyberterrorism, and cyberwarfare, amongst others. Within these cyber threats, those with the generic name Ransomware are evolving quickly and with a major impact. We will explain...

Tags:

Cybercrime

Malware

Threats

Bootkits: Attacking the boot process

The boot process is a critical moment in the hardware initialization and operating system loading. This circumstance is a great opportunity for malicious software in order to take control of the machine silently.

Tags:

DoS: Application Layer

Application layer denial of service attacks are the second main group of Denial of Service (DoS) attacks, along with DoS attacks against the infrastructure layer. As its name indicates, these types of attacks are targeted at the application layer or layer seven of the OSI model. Their objective is to cause a denial of service, taking advantage of design flaws in the communications protocol...

Tags:

Cybercrime

Threats

Malware in Linux: Rootkits, concealment and detection

In previous papers have discussed the main types of rootkits in Linux and its operation. Some methods are described for this type of malware to hide and what you can do to try to detect them.

Tags:

Linux

Rootkit

Threats

DoS Attacks: Infrastructure Layer

As we have already mentioned previously, infrastructure attacks are those that focus mainly on layers three and four of the OSI model (ISO/IEC 7498-1) and application layer protocols that support communications, such as DNS or NTP. This is the most frequent type of attack and, as illustrated in the following graphic, makes up 90% of the DDoS attacks detected by Akamai in the fourth quarter of...

Tags:

Cybercrime

Threats

Malware in Linux: Kernel-mode-rootkits

The kernel-mode rootkits are one of the most fearsome threats because of their level of sophistication and difficulty of detection. Know how this type of rootkits in Linux systems work.

Tags: