Attack trends in the industrial sector during 2023

Posted on 30/11/2023, by
INCIBE (INCIBE)
Attack trends in the industrial sector during 2023
The security gaps and issues that exist within industrial environments are sometimes unknown to many information consumers. This article aims to bring first hand some of the most interesting issues and attack trends in 2023 in the industrial sector. Different industrial cybersecurity incidents so far this year will be described at a high level and a comparison will be made with the trend presented at the beginning of the year.

Securing routing: challenges and solutions in BGP

Posted on 23/11/2023, by
INCIBE (INCIBE)
Securing routing BGP
The Border Gateway Protocol (BGP) is fundamental to the functioning of the Internet as we know it, as it serves to route data flows along the optimal routes, through several different hops (or IPs). However, it was not designed with security by design, which opens the door to hijacking BGP-type  threats. Through these types of attacks, malicious actors can redirect traffic, causing data loss, such as  in Man-in-the-Middle, among others. This article explores in depth these types of attacks, their impact, and the countermeasures available through mechanisms such as RPKI, IRR, and ROA. 

Open Intelligence in Industry: An Analysis of OSINT

Posted on 16/11/2023, by
INCIBE (INCIBE)
Inteligencia abierta en la industria: un análisis sobre el OSINT
OSINT (Open-Source Intelligence) is a technique that focuses on the collection, evaluation and analysis of public information through different methods and techniques, with the objective of discovering vulnerabilities or collecting sensitive information that could become threats. It should be emphasized that the data collection is not called OSINT, it would be raw information. Once this information is evaluated and treated, it could be said that we are really talking about open-source intelligence (OSINT).Initially it has been used in the military and government sector. Its use in OT, with disciplines such as SIGINT (Signals Intelligence), IMINT (Imagery Intelligence) or even 'Sock Puppets' (fake profiles or intruders in technical forums) is making havoc due to the criticality of this equipment. Disinformation or the compilation of sensitive industrial technical information are some of the serious consequences that this sector is exposed to.

Vulnerabilidades

Vulnerabilidades

Vulnerabilidades

Información en castellano sobre las últimas vulnerabilidades documentadas y conocidas.

Guías y estudios

Guías y estudios

Seguridad en Protocolos Industriales – Smart Grid

Contenido práctico y teórico avanzado sobre ciberseguridad para técnicos.

Servicio para operadores

Servicio para operadores

Protocolos y seguridad de red en SCI

Conjunto de servicios que ofrecemos para operadores estratégicos.

botón arriba