ElevenPaths Cybersecurity Weekly Briefing July 4-10 RCE Vulnerability in F5’s BIG-IP (CVE-2020-5902) Last Wednesday a new critical Remote Code Execution vulnerability (CVE-2020-5902 CVSSv3 10) was published for F5’s Traffic Management User Interface (TMUI). This vulnerability allows...
ElevenPaths ElevenPaths Radio English #1 – Skills of a Cybersecurity Professional In this first episode, our CSA Deepak Daswani discusses what a true cybersecurity professional must have to be valuable to companies.
ElevenPaths Keys to Implementing a 360 Corporate Digital Identity We analyze the identity management issues and the characteristics that a comprehensive solution of this kind must have in all organizations.
ElevenPaths #CyberSecurityPulse: The Transparent Resolution of Vulnerabilities Is Everyone’s Business The new year has started with a story that has taken the covers of specialized and generalist media all around the world. The vulnerabilities named as Meltdown and Spectre...
ElevenPaths Cybersecurity Weekly Briefing July 4-10 RCE Vulnerability in F5’s BIG-IP (CVE-2020-5902) Last Wednesday a new critical Remote Code Execution vulnerability (CVE-2020-5902 CVSSv3 10) was published for F5’s Traffic Management User Interface (TMUI). This vulnerability allows...
ElevenPaths ElevenPaths Radio English #1 – Skills of a Cybersecurity Professional In this first episode, our CSA Deepak Daswani discusses what a true cybersecurity professional must have to be valuable to companies.
ElevenPaths New tool: “Web browsers HSTS entries eraser”, our Metasploit post exploitation module This module deletes the HSTS/HPKP database of the main browsers: Chrome, Firefox, Opera, Safari and wget in Windows, Mac and Linux. This allows an attacker to perform man in...
ElevenPaths #CyberSecurityPulse: Biggest-Ever DDoS Attack Hits Github Website At the end of 2016, a DDoS attack on DynDNS blocked major Internet sites such as Twitter, Spotify and PayPal. The Mirai botnet was used to take advantage of...
ElevenPaths Cybersecurity Weekly Briefing July 4-10 RCE Vulnerability in F5’s BIG-IP (CVE-2020-5902) Last Wednesday a new critical Remote Code Execution vulnerability (CVE-2020-5902 CVSSv3 10) was published for F5’s Traffic Management User Interface (TMUI). This vulnerability allows...
Diego Samuel Espitia How to Protect Yourself from Pandemic Cyberattacks Using Free Tools Find out which free tools you can use to protect your computer from common cyberthreats and how to configure them correctly.
Gonzalo Álvarez Marañón Top 10 TED Talks to Learn about Cybersecurity Discover the top 10 talks to learn about cybersecurity and, at the same time, some ways to improve your own presentations.
ElevenPaths How to forecast the future and reduce uncertainty thanks to Bayesian inference (I) Imagine that you come back home from San Francisco, just arrived from the RSA Conference. You are unpacking your suitcase, open the drawer where you store your underwear and…...
Mobile Threat ProtectionFlorence Broderick 28 April, 2016 The agreement between Eleven Paths and Check Point on commercialization and technological integration allows Telefonica to complement its Enterprise Mobility Management (EMM) solution with the most advanced mobile protection service. At ElevenPaths we strongly believe that the only viable Information Security is one that protects all breaches of the corporate perimeter. When criminal organizations attack a corporation, they try to make their way successively to all entry-points in order to break any possible barrier. Hence, the security of the whole system is equal to the security of its weakest front. The security strategies that don´t shield against all possible attack vectors are completely useless versus advanced attacks. This is the principle that guided us when developing our mobile security service product during the last months. We have implemented two confluent lines of work: on one hand, the capabilities improvement of our product Tacyt; on the other hand a thorough market research looking for the most forward-looking security technology which would meet all and each one of our demanding requirements (depicted in the diagram below) and which would naturally adjust itself to our products and services ecosystem. We are convinced that the Mobile Threat Protection Service of Telefonica integrated into our Enterprise Mobility Management (EMM) suite is the best and the most comprehensive protection in the world. This service is disruptive for the following reasons: It protects against the three mobile vectors attack. Most of the mobile security solutions are incomplete since they are only able to detect malicious applications, being ineffective against device or network attacks. Behavioural Adaptive Security Analysis. In mobile context, the speed of attacks is almost instantaneous and malware mutation is fast. This has made it undetectable for traditional signature-based antivirus. Therefore MTP includes patented algorithms of behavioural analysis that, in combination with the advanced correlation from Tacyt, allows to detect zero-day attacks Automatic triggering of quarantine policies. The answer to an attack can´t wait. For that reason MTP is integrated with the Telefonica MDM service to immediately trigger quarantine actions in order to isolate all at-risk devices and prevent information theft and lateral movements. A built-in user-friendly service which ensures enterprise productivity. MTP is one more component of the Enterprise Mobility Management (EMM) suite of Telefonica. Thanks to the suite, the Telefonica clients have a single access point for corporate mobility services: connectivity, telecom expenses management, mobilization and productivity processes, mobile device management, and, of course, advanced security. It is also possible to hire some efficient professional services to which delegate the aforementioned services management. To conclude, we strongly believe that our clients benefit from the best mobile security service available on the market. *It may be of your interest: ElevenPaths y Check Point Software Technologies ofrecemos servicios conjuntos de seguridad móvil ElevenPaths and Check Point Software Technologies provide joint Mobile Protection Services Globally Francisco Oteiza Lacalle francisco.oteizalacalle@telefonica.com @Fran_Oteiza Francisco Oteiza LinkedIn Social engineering is more active than ever[New report] “Cyber-insurance: cyber risk transfer in Spain”
ElevenPaths Cybersecurity Weekly Briefing July 4-10 RCE Vulnerability in F5’s BIG-IP (CVE-2020-5902) Last Wednesday a new critical Remote Code Execution vulnerability (CVE-2020-5902 CVSSv3 10) was published for F5’s Traffic Management User Interface (TMUI). This vulnerability allows...
Diego Samuel Espitia How to Protect Yourself from Pandemic Cyberattacks Using Free Tools Find out which free tools you can use to protect your computer from common cyberthreats and how to configure them correctly.
ElevenPaths ElevenPaths Radio English #1 – Skills of a Cybersecurity Professional In this first episode, our CSA Deepak Daswani discusses what a true cybersecurity professional must have to be valuable to companies.
Franco Piergallini Guida Adversarial Attacks: The Enemy of Artificial Intelligence What happens when the data used by artificial intelligence to predict behaviour is manipulated? Is this an attack vector?
ElevenPaths Telefónica Invests in Nozomi Networks, a Leading Company in OT and IoT Security The investment reinforces an earlier joint services agreement with Nozomi Networks and ElevenPaths, Telefónica Tech’s cybersecurity company
Sergio De Los Santos OpenPGP: Desperately Seeking Kristian Open Source applications run on a server system that has never worked properly. Why does this happen?
