INCIBE-CERT

Quantum computing is radically changing the cybersecurity landscape. While this technology offers significant advances in processing and analysis capabilities with extensive applications in simulation, optimisation, and artificial intelligence, it also poses an unprecedented threat to the traditional cryptographic systems that underpin current online security. Quantum computing, in particular, has the potential to break algorithms such as RSA, ECC and other public key systems using techniques such as Shor's algorithm. This scenario, anticipated as ‘Q-Day’, forces a massive migration from current cryptography to quantum-safe cryptography. Given that many current systems and devices will not be able to adapt easily, a considerable technical and organisational effort is required.

The BACnet (Building Automation and Control Networks) communications protocol is a standardised, open protocol developed by ASHRAE (American Society of Heating, Refrigerating and Air-Conditioning Engineers Inc) designed for smart building management. Its main advantage is the ease with which it enables communication between different devices and systems from various brands.This article provides a technical analysis of the BACnet protocol, explaining its technical concepts, new features and advantages in industrial environments, and how it has evolved to meet today's cybersecurity requirements. 

In May 2025 the KrebsOnSecurity site suffered a massive DDoS attack of approximately 6.3 Tbps. According to the information reported, it was a brief incident ( approximately 40 to 45 seconds) designed as a test of a new IoT botnet called Aisuru. The magnitude of the attack was unprecedented: it exceeded the 2016 Mirai attack (623 Gbps) by a factor of ten. At the time, the affected entity was under the protection of Google Project Shield (free anti-DDoS service for media), and Google confirmed that this was the largest attack its infrastructure had ever suffered. This incident is a clear example that DDoS attacks are becoming more and more powerful, and can compromise even the most prepared entities, so we will explain in detail the topic of DDoS attacks.