Strategic Management System

APLICANDO DE MANERA SIMPLE EL CICLO PLANEAR-HACER-VERIFICAR-ACTUAR EN LA ESTRATEGIA EMPRESARIAL

SWIFT CSP: Elevating Financial Transaction Security in the Digital Age

NIST CSF: Addressing Today's Cyber Challenges

What is Social Engineering and how to protect yourself from its attacks?

Social Engineering is a set of techniques that transcend the technological realm for stealing information, using psychological and social methods to achieve it. Learn more about this modality here.

ISO 27001:2013 PRACTICAL ADVICE ON IMPLEMENTATION WITH A FOCUS ON SENIOR MANAGEMENT

TISAX: TWO COMMON FINDINGS IN THE LAST CERTIFICATION AUDITS CARRIED OUT

How to improve SAP Security?

Without a doubt, SAP is one of the leaders in ERP software worldwide, more than 437,000 companies in 180 countries use a SAP system.

Box 2FA Bypass opens user accounts to attack

A security flaw in the file-sharing cloud app could have allowed attackers to use stolen credentials to bypass SMS one-time code verification requirements.

PwnKit: Local privilege escalation vulnerability discovered in polkit pkexec (CVE-2021-4034)

This easily exploitable vulnerability allows any non-privileged user to gain full root privileges on a vulnerable host by exploiting this vulnerability in its default configuration.

ESET antivirus bug allows attackers to gain Windows SYSTEM privileges

Security alert

Microsoft Releases Patches for 51 Vulnerabilities

Security Advisory for SAP ICMAD Critical Vulnerabilities

Critical Vulnerabilities in VMware ESxi, Fusion and Workstation

Microsoft SQL Servers, victims with Cobalt strike

Cybersecurity Projections for 2024 According to Gartner

We explore the cybersecurity trends for 2024 identified by the business research and advisory firm, Gartner.

The Most Common Human Errors in Cybersecurity

Discover the most common human errors that compromise cybersecurity and how organizations can mitigate these risks.

Ransomware in Latin America and Why You Need to be Prepared

Is ChatGPT becoming a cybersecurity problem?

Discover how ChatGPT, a revolutionary AI tool, is being used by cybercriminals, presenting new challenges in cybersecurity.

COBIT in your company: the key to optimal IT management

Discover how COBIT can revolutionize IT management in your company. Learn about its structure, benefits, and how to implement this framework to effectively align your IT resources with business objectives.

Managed Cybersecurity Services: Your Digital Security in the Hands of Experts

Discover how managed cybersecurity services can transform your company's digital security, offering resilience and strategic value.

Cybersecurity Trends for 2024: A Look into the Future

Discover key cybersecurity trends for 2024 in Latin America, including the impact of AI, cybercrime in messaging, and supply chain challenges.

Business Continuity and the Importance of ISO 22301 Standard

Disaster recovery and its role in business continuity

Learn the importance of IT disaster recovery for business continuity, including methods, operation and training of recovery teams.

The ISO/IEC 27001:2022 standard: key to the security of your company's information

Discover how the ISO/IEC 27001:2022 standard can strengthen information security in your company, guaranteeing data protection and improving cyber resilience.

What is digital resilience and how to build it in my company?

Discover the concept of digital resilience in companies, its importance and how to build it to guarantee the security and continuity of your business.

Digital transformation in companies: why should they do it?

We tell you everything about the importance of digital transformation in companies, its benefits and how to carry it out successfully.

Cybersecurity in SMEs: an issue beyond the size of the company

Discover the importance of cyber security for SMEs and how small and medium-sized businesses can protect themselves from growing cyber threats

Cybersecurity risks in the supply chain

These are the cybersecurity risks that threaten the supply chain. We tell you how to mitigate them and keep them at bay.

Artificial intelligence in detection and prevention of cyber threats

We tell you how AI can protect your data and systems from malicious attacks.

The importance of cybersecurity awareness: educating the organization as the first step of defense

Investing in advanced cybersecurity solutions is not enough. The fundamental step to protect information and assets lies in cybersecurity awareness.

Guidelines for Ensuring Business Continuity in the Era of Telecommuting

Telecommuting has brought about a fundamental change in many aspects, and one of them is business continuity. Here, we'll explain how to ensure it in this era.

Key computing technologies to protect your organization

Unmasking a Digital Threat: Computer Vulnerabilities in the modern age

¿Qué es Chat GPT? ¿Cómo usarlo? Todo lo que necesitas saber sobre el bot impulsado por IA

El bot ChatGPT impulsado por IA tomó Internet este miércoles, cuando la compañía de investigación de Inteligencia Artificial (IA) OpenAI anunció el prototipo de chatbot de IA.

What to consider before accepting a privacy policy?

Historical cyberattack. What happened in Costa Rica?

The group of hackers of Russian origin Conti, request $10 million from the Government of Costa Rica for the information apparently stolen from the websites of the Ministry of Finance.

Spring4shell

Apple releases patch to fix zero-day vulnerability on iPhone, iPad and Mac

These are two vulnerabilities that according to the company are probably being actively exploited by attackers.

Sophos UTM- SQL INJECION

Cyberattacks on the critical infrastructure of a country and its consequences

Mientras se recomienda a las organizaciones permanecer alertas ante una posible expansión de los ciberataques, analizamos la importancia de proteger las infraestructuras críticas.

Apple cybersecurity flaw: the AirDrop app could have put the data of millions of users at risk

Method to detect if an Office document has malicious code

We explore different methods that can be applied to different Office suite documents to extract their content (in some cases without opening it) and determine whether or not it is malicious

Top 10 Privacy Risks

The OWASP Top 10 Privacy Risks Project provides a list of the top 10 web application privacy risks and related countermeasures.

What is egosurfing: keys to knowing the information that the Internet has about you

Have you ever searched for your name on Google or any other Internet search engine? Out of curiosity or for a specific purpose

What is vishing: scams through calls or voice messages

Vishing is a type of attack via phone calls or voice messages that uses social engineering to trick victims into stealing sensitive information.

The mysterious "Robin Hood" hackers who steal to give to charity

Experts and charities are baffled by hackers who started donating stolen money

Stalkerware for Android: an increasingly dangerous threat that even exposes those who spy

Many Android stalkerware apps are riddled with vulnerabilities that further endanger victims and expose the privacy and security of the spying themselves.

Romance Scams: How They Often Scam People and How to Avoid It

Online dating scams often follow the same script: here's what older people should be aware of and how younger family members can help prevent them from falling victim.

Gelsemium: a complex and modular malware used by a cyberspy group

ES researchers discuss new campaigns by the Gelsemium group and the complex modular malware it has used in attacks against governments, universities, electronics manufacturers, and religious organizations in East Asia and the Middle East.

FIFA 21 source code stolen after attack on Electronic Arts (EA)

Attackers managed to break into EA's systems by gaining access to a Slack channel used by the video game company and tricking a support employee into allowing them access to the network.

2021 the year that the issue of phishing has gained more strength

January of this year saw the all-time high in the number of unique phishing site URLs globally,

4 things you should do before experiencing a ransomware attack

Here's what organizations can do today to minimize the impact of a potential ransomware attack in the future.

The End of Fake Robocalls: US Approves Technology to Block These Scams

Millions of people do not answer calls from unknown numbers for fear that there is an illegal robocaller behind it who wants to get hold of their bank details.

What you need to know about Apple CVE-2021-30860, also known as FORCEDENTRY

Multiple vulnerabilities in Cisco devices

INCIBE published 16 vulnerabilities, establishing 3 of critical severity and 13 of high severity, which affect multiple devices of the aforementioned brand.

SecurityCON 2021: A place where multiple experts meet to talk about cybersecurity.

The region's cybersecurity event

Did you know that Ingenuity, the Mars 2020 helicopter mission, is powered by Apache Log4j?

Supply Chain Attacks on NPM Repositories

What many know but few apply about secure development

Most companies do some form of development in-house to streamline and optimize business processes. The problem is that many times security is not taken into account in this type of application. Let's see some characteristics of secure application development and the importance of taking them into account in the analysis