Audit and consulting

Best practices

DrDoS cyberattacks based on the NetBIOS protocol

This post presents some lines of action that should be followed to deal with a DrDoS cyberattack based on the NetBIOS protocol, describing in detail the prevention, identification and response phases to follow.

Tags:

DrDoS cyberattacks based on the UBNT protocol

This post sets out some lines of action that must be followed to deal with a DrDoS cyberattack based on the UBNT protocol; it describes in detail the prevention, identification and response phases that must be adopted.

Tags:

DrDoS cyberattacks based on the PortMapper protocol

This post sets out some lines of action that must be followed to deal with a DrDoS cyberattack based on the Portmapper protocol; it describes in detail the prevention, identification and response phases that must be adopted.

Tags:

CharGEN cyberattacks based on the CharGEN protocol

This post sets out some lines of action that must be followed to deal with a DrDoS cyberattack based on the CharGEN protocol; it describes in detail the prevention, identification and response phases that must be adopted.

Tags:

DrDoS cyberattacks based on the Memcached protocol

This post sets out some courses of action that must be followed to deal with a DrDoS cyberattack based on the Memcached service; it describes in detail the prevention, identification and response phases that must be undertaken

Tags:

Threat analysis study: Anatsa

Anatsa is a banking Trojan designed for Android devices that has become particularly relevant since its discovery in January 2021. Throughout the study, a detailed technical analysis of the threat is carried out using a sample of the malicious code in question to show how this malware behaves and the possibilities it offers.

Tags:

DrDoS cyberattacks based on the LDAP protocol

This post sets out some lines of action that must be followed to deal with a DrDoS cyberattack based on the LDAP protocol; it describes in detail the prevention, identification and response phases that must be undertaken.

Tags:

DrDoS cyberattacks based on the mDNS protocol

This post sets out some lines of action that must be followed to deal with a DrDoS cyberattack based on the mDNS protocol; it describes in detail the prevention, identification and response phases that must be undertaken.

Tags:

Control of multicast requests in the IEC 61850 standard

In previous articles an introduction was given to the 61850 regulation and the different protocols of which it consists. As explained in those articles, the GOOSE and SV (Sample Values) protocols, included in the standard, use multicast frames. Security is very difficult to implement in this type of frame, but there are a number of measures that make possible to raise the security level.

Tags:

Best practices