Blog

Cybersecurity is becoming a key aspect for any company that wants to ensure the continuity of its business operations, as well as safeguard customer trust and brand reputation. Additionally, the techniques and methods for attacking a company are constantly evolving, becoming much more sophisticated, especially with the use of technologies like Artificial Intelligence.

Of all the cyberattacks carried out in 2023, 70% were phishing attacks. Through manipulation and deception, cybercriminals impersonate companies or individuals to steal credentials and access keys from their victims.

There are a series of cybersecurity protocols that every organization should have implemented and activated to protect both the internal and external security of the company. This is a way to safeguard data from the clutches of cybercriminals, thus avoiding both economic damage and harm to the company's image and brand reputation.

To ensure the proper functioning and protection of cybersecurity systems within a company, periodic monitoring and evaluation are of utmost importance. Evaluating the organization's IT systems and infrastructure is crucial to understanding their level of cybersecurity.

The MITRE ATT&CK matrix, designed by the MITRE Corporation, is used to describe and catalog fraudulent behaviors in cybersecurity. To do this, it relies on tactics and techniques commonly used by cybercriminals to prevent users from such attacks.

Cybersecurity has become one of the most important aspects for companies to carry out their activities safely and ensure the privacy of their data and internal and confidential information.

Distributed Denial of Service (DDoS) attacks are a variant of Denial of Service (DoS) attacks and aim to disable a server, a service, or an infrastructure.

To give us a little context on the current state of ransomware attacks, the annual Sophos report, "The State of Ransomware 2023," reveals that cybercriminals successfully encrypted data in 76% of all ransomware attacks against the surveyed companies in the report. In 30% of the cases where the data was encrypted, it was also successfully exfiltrated."

While Industry 4.0 has focused on driving technologies like IoT, Big Data, and Artificial Intelligence over the past decade, the arrival of Industry 5.0 marks a new evolution in this approach.

One of the most common cyberattacks is phishing and email account hacking. These attacks, increasingly sophisticated, are becoming harder to detect, resulting in a higher success rate compared to other types of attacks.

In a previous article, we talked about Petam.io, the automatic online scanner we have developed to detect security breaches as a tool to democratize cybersecurity.

How to know if you've been cyber-attacked? Surely, after this question, you might think, what a silly question, detecting a cyber attack is very easy and obvious. However, as cybersecurity specialists, we can tell you that this is not always the case. It all depends on your technical knowledge and the type of cyber attack.

MDR (Managed Detection and Response) is a managed cybersecurity service, which means it provides real-time monitoring, threat detection, and incident response autonomously. It's a solution that continuously monitors a client's network, identifies potential threats, and takes actions to contain and mitigate them.

In the realm of cybercrime, new methods of cybercriminals violating our rights and taking advantage of them are constantly being detected.

The technology company ABB was attacked with ransomware in May 2023 by the Black Basta group, which operates as a ransomware-as-a-service (RaaS).

According to the following article from seguridadred.com, in 2023, eight out of ten companies felt vulnerable to cyberattacks against the supply chain. The introduction of new technological tools for greater efficiency, such as cloud computing and the Internet of Things (IoT), has intensified cyber threats in the supply chain.

Industrial cybersecurity refers to the information security used in industrial environments such as production plants, critical infrastructures, and industrial control systems.

Technology has also made its way into the education sector. Teaching through computers and screens is the most common and widely used method by educational institutions nowadays.

Are cybersecurity and SEO related? How can cybersecurity help SEO? If you're an SEO or marketing specialist, you should know that the security of a website can impact its search engine ranking, as well as your reputation and brand image, either positively or negatively.

The main wish of cybercriminals when they launch a cyberattack is for it to achieve its goal, which is to infect a computer system with malware, so they can access the information it stores in order to demand an economic ransom for its recovery.

Ransomware  is a type of malware that prevents access to our inforamation. In other words, cybercriminals block access to our files and demand an economic ransom in exchange for restoring access. If we don't comply, they threaten to publicly disclose the encrypted information, wich often includes sensitive data sucha as bank accounts and emails.

There are many types of cyberattacks, and as technology advances, more types emerge. However, there are some hacking techniques that are the most common and used by cybercriminals, as they are the most effective for achieving their objectives.

What is the main objective of cybercriminals when attacking a company or user? To obtain confidential information that could jeopardize the reputation of an organization or individual, aiming to gain economic benefits in exchange for not making it public.

In 2022, cyberattacks in the healthcare sector surged by 650%, according to Tehtris. These attacks can result not only in the loss of sensitive and confidential data about clients, patients, suppliers, collaborators, etc., but also in the potential theft of formulas or disruption of the organization's activities.

At ESED, as a company specialized in cybersecurity, especially in the healthcare sector, we want to discuss some of the ethical hacking techniques we use in the pharmaceutical sector to ensure the security of their information and prevent data leaks.

Stalking is not a new phenomenon; the first anti-stalking law was passed in 1990 in California, which later spread across the United States and ultimately became a federal offense in 1996. In Spain, the first stalking conviction occurred in 2016.

In a previous post, we've already discussed phishing, cyberattacks launched through email with the goal of deceiving the user into taking a specific action, such as clicking on a link that includes the download of an infected file.

We refer to cyberfraud as all those crimes or scams that are committed on the internet, whether through a website or the applications we use. Cyberfraud is big business: according to a report from the European Central Bank (ECB), fraudulent transactions amount to 1.8 billion euros annually. In 2019, cybercrimes grew by 36% compared to 2018. According to the Ministry of the Interior, 12 frauds and threats are reported online every hour.

Sharing folders and files is one of the most common practices nowadays, especially now that most of us work in the cloud and spend our days granting and revoking permissions. To you, I say you can only view it, to you, you can view and edit it... and so on all day long. But do we really have control over who has access to the information, who was the last person to modify it, or where it is located?

Let's put ourselves in a bit of context...

Having a cybersecurity strategy is an obligation for any company looking to minimize the risks of suffering a cyberattack that could compromise its information and tarnish the company's reputation. However, it should be regularly reviewed, and a good time to do so is upon returning from holidays.

Implementing cybersecurity solutions has now become an indispensable requirement for companies. Digitization has made data and information collection and storage easier, but it has also made them more vulnerable to theft if not properly protected. This is why cybersecurity solutions have become essential for any company operating on the internet and in the cloud.

Artificial Intelligence (AI) is disrupting various aspects and sectors of our society. This technology, which is here to stay and continues to evolve, initially aimed to make our lives easier and provide support in areas where the execution of certain manual tasks required too much effort, time, and money to accomplish

Did you know that the holiday season is one of the most critical times in terms of cybersecurity for individuals? During summer break, there's so much to plan (flights, hotels, activities, meals...) that we tend to forget about cybersecurity. Here are five easy tips to keep everything secure.

Pharmaceutical giant Novartis fell victim to a cyberattack. (Clarín, June 2022)

In the current era where technology plays an increasingly important role in the business world, the cloud has become an essential tool for improving system efficiency and scalability. AWS (Amazon Web Services) is the most popular and powerful cloud platform in the market, and migrating your servers to it can offer a range of benefits, such as increased scalability, higher availability, and improved security.

In previous posts, we already mentioned that ransomware attacks increased by 500% in 2019. It is one of the most frequent types of malware that companies and users have to constantly battle.

In 2023, Spain was one of the countries with the most phishing attacks. Many companies and individuals fell victim to some form of cyberattack through email, resulting in the loss of confidential information due to credential and password theft.

"In Spain, there are more than 9,100 professional influencers with over 100,000 followers on one of the existing social media platforms: TikTok, Facebook, YouTube, Instagram, or Twitch. 900 of them have reached one million followers." Tubular Labs.

The Cyber Preparedness Report 2022 states that last year, half of the Spanish companies (51%) fell victim to cyberattacks more than 84 times.

Google has caused quite a stir with the launch of the new top-level domains (TLDs) .zip and .mov. After the introduction of this novelty, a wide debate has arisen about the potential dangers that could accompany these extensions.

Advisory and consulting firms handle and collect a large amount of data and confidential information that could be vulnerable in the event of a cyberattack.

The loss of files and data, whether due to accidental deletion or the entry of a virus into our system or device, is very common. With the years we have spent in the world of cybersecurity and IT solutions, we have realized that data recovery services or Disaster Recovery continue to be in high demand.

Bookmarks are an essential tool for organising your information, and keeping track of what you prioritise and where you want it to go. With so much information available in a couple of clicks, getting organised is becoming increasingly important. Did you accidentally delete your bookmarks? Is there a way to recover deleted bookmarks from Chrome?

By making a few simple changes to your devices and accounts you can keep them secure from unwanted third parties, as well as protect your online privacy.

Currently, 94% of users use mobile phones to connect to the Internet, according to the AIMC. A very relevant but worrying figure at the same time. Those of us who work in computer security are aware that mobile security is not usually the same as computer security.