Blog

Hunting shadows in Industry

In the same way that a known character or image is reflected within an industry by feigning a happy face, advanced persistent threats exist and are often camouflaged through the phenomenon of pareidolia (they resemble something else) within industrial networks. But how can we spot these threats? And, above all, is it possible to pre-empt their malicious intentions?

Tags:

Industrial Control System

Vulnerability

Advanced Cybersecurity for Mobile Platforms Course

Interested in learning about cybersecurity in mobile devices? This is the course for you!

Reservation for INCIBE's free course on Cybersecurity in Mobile Devices is now open on the Canvas Network and starts on 17 October.

Tags:

Bluetooth Security: Strengths and Weaknesses

Today there is not a mobile phone on the planet that does not feature Bluetooth technology to connect to other wireless devices. To add to this, the emergence of the Industrial Internet of Things (IIoT) has generated multiple vectors of attack through this technology.

Tags:

Best practices

Data protection

Industrial Control System

Vulnerability

Building from the Ground Up: Protecting End Devices

Embedded devices are Los dispositivos embebidos are becoming ever more present in the systems of today; such as end devices, whether cars, industrial machinery or in the areas of health, robotics, etc. Moreover, with the emergence of the Internet of Things (IoT), the use of communication devices and information exchange is expanding even further.

Tags:

Critical infrastructures

Industrial Control System

Vulnerability

Malware families in industry

From time to time, Cybersecurity incidents in industry related to malware are published, and this news is often quite worrying.

Tags:

APT

Botnet

Critical infrastructures

Industrial Control System

Rootkit

Vulnerability

DROWN: yet another SSL vulnerability

What is DROWN? DROWN is the name given to a new vulnerability linked to It is therefore a continuation of the trend that has appeared in recent years whereby diverse vulnerabilities have appeared which have a certain impact associated to Internet communication security, for example Heartbleed, POODLE, WinShock, FREAK o Logjam, among others. The acronym DROWN stands for Decrypting RSA with...

Tags:

Cryptography

Vulnerability

Bug Bounties in ICS: Vulnerabilities in search and arrest

For quite some time now, identifying bugs that affect the security of companies' products and services has been acknowledged by said companies in recognition of the dedication and work carried out by researchers to improve system security.

Tags:

Industrial Control System

iOS

Vulnerability

Logjam and other vulnerabilities in Spanish domains

After the discovery of several vulnerabilities associated related to the SSL/TLS protocol in 2014 and the first trimester of 2015, in the middle of last May “Logjam”, was disclosed, a new vulnerability that affects the security of Internet communications. Let's analyze its impact in Spanish domains

Tags:

Studies & stats

Vulnerability

IT tools that evolve for OT

Security tools started to be used in corporate environments many years ago. However, control systems are just now starting to use them, taking full advantage of the lessons learned in corporate environments.

Tags:

Antivirus

Best practices

Industrial Control System

Vulnerability

Common Vulnerability Scoring System v3.0

The most widely used framework for vulnerability scoring, the CVSS (Common Vulnerability Scoring System ) has been updated incorporating improvements in a new version: CVSS 3.0

Tags:

Best practices

Safe development

Vulnerability

Corporate access

Hunting shadows in Industry

Interested in learning about cybersecurity in mobile devices? This is the course for you!

Bluetooth Security: Strengths and Weaknesses

Building from the Ground Up: Protecting End Devices

Malware families in industry

DROWN: yet another SSL vulnerability

Bug Bounties in ICS: Vulnerabilities in search and arrest

Logjam and other vulnerabilities in Spanish domains

IT tools that evolve for OT

Common Vulnerability Scoring System v3.0

Pages