AHQ-AGENCY Cybersecurity News

Noticias Destacadas

Latest News

LLMs are getting better at unmasking people online

The author of a new study told CyberScoop he's "very worried,” describing deanonymization capabilities of AI as a “large scale invasion of privacy.” T...

2026-03-04 - CyberScoop

Fake LastPass support email threads try to steal vault passwords

Password management software provider LastPass is warning users of a phishing campaign targeting its users with fake unauthorized account access alert...

2026-03-04 - BleepingComputer

Automate or orchestrate? Implementing a streamlined remediation program to shorten MTTR

Security teams want lower MTTR, but flaws persist. How to use automation vs. orchestration to reduce risk effectively? Almost all security teams want ...

2026-03-04 - Security Affairs

NDSS 2025 – On The Realism Of LiDAR Spoofing Attacks Against Autonomous Driving Vehicle

Session 14D: Autonomous Vehicles Authors, Creators & Presenters: Ningfei Wang (University of California, Irvine), Shaoyuan Xie (University of Cali...

2026-03-04 - Security Boulevard

The Verification Imperative: How One Framework Is Reshaping Trust in Financial Code

The software that moves money, processes trades, and manages accounts is among the most scrutinized code on earth. Yet even in highly regulated financ...

2026-03-04 - Security Boulevard

Why AI, Zero Trust, and modern security require deep visibility

AI. Automation. Zero Trust. They dominate every security strategy document. But there’s a truth sitting underneath all three: none of them work wit...

2026-03-04 - CSO Online

The 10-hour problem: How visibility gaps are burning out the SOC

Security teams aren’t drowning because the threats improved. They’re drowning because the visibility got worse. The October 2025 commissioned Forre...

2026-03-04 - CSO Online

Cisco warns of max severity Secure FMC flaws giving root access

Cisco has released security updates to patch two maximum-severity vulnerabilities in its Secure Firewall Management Center (FMC) software. [...]

2026-03-04 - BleepingComputer

Spyware-grade Coruna iOS exploit kit now used in crypto theft attacks

A previously undocumented set of 23 iOS exploits named "Coruna" has been deployed by multiple threat actors in targeted espionage campaigns and financ...

2026-03-04 - BleepingComputer

The Instagram API Scraping Crisis: When ‘Public’ Data Becomes a 17.5 Million User Breach

17.5 million Instagram accounts leaked through API scraping. Meta denies breach, but your data is on the dark web. Here's what actually happened. The ...

2026-03-04 - Security Boulevard

Hacker mass-mails HungerRush extortion emails to restaurant patrons

Customers of restaurants using the HungerRush point-of-sale (POS) platform say they received emails from a threat actor attempting to extort the compa...

2026-03-04 - BleepingComputer

Tycoon 2FA Phishing Platform Dismantled in Global Takedown

The phishing-as-a-service platform was used to send fraudulent emails to over 500,000 organizations every month. The post Tycoon 2FA Phishing Platform...

2026-03-04 - SecurityWeek

Authorities from 14 countries shut down major cybercrime forum LeakBase

The marketplace was one of the world’s largest hubs for cybercrime with more than 142,000 members. Officials identified and arrested multiple suspects...

2026-03-04 - CyberScoop

Randall Munroe’s XKCD ‘Groundhog Day Meaning’

via the comic artistry and dry wit of Randall Munroe, creator of XKCD Permalink The post Randall Munroe’s XKCD ‘Groundhog Day Meaning’ a...

2026-03-04 - Security Boulevard

FBI seizes LeakBase cybercrime forum, data of 142,000 members

The FBI has seized the LeakBase cybercrime forum, a major online forum used by cybercriminals buy and sell hacking tools and stolen data. [...]

2026-03-04 - BleepingComputer

New LexisNexis Data Breach Confirmed After Hackers Leak Files

The hackers claim to have stolen 2GB of files, including 400,000 personal information records. The post New LexisNexis Data Breach Confirmed After Ha...

2026-03-04 - SecurityWeek

149 Hacktivist DDoS Attacks Hit 110 Organizations in 16 Countries After Middle East Conflict

Cybersecurity researchers have warned of a surge in retaliatory hacktivist activity following the U.S.-Israel coordinated military campaign against Ir...

2026-03-04 - The Hacker News

Stranger Things Meets Cybersecurity: Lessons from the Hive Mind

Events and concepts from the Stranger Things television series illustrate how enterprises can defend their networks and stay "right side up."...

2026-03-04 - Dark Reading

MY TAKE: ChatGPT is turning into Microsoft Office — and power users are paying the price

Something has been shifting inside the tools millions of us use every day, and it’s worth naming out loud. Related: AI is becoming a daily routine Ove...

2026-03-04 - Security Boulevard

Coalition of Western Countries Launches 6G Cybersecurity Guidelines

A coalition of seven Western nations has launched guidelines to help integrate security-by-design principles into future 6G standards

2026-03-04 - Infosecurity Magazine

Inside Tycoon2FA: How a leading AiTM phishing kit operated at scale

Tycoon2FA has become a leading phishing-as-a-service (PhaaS) platforms, enabling campaigns that reach over 500,000 organizations monthly, prompting Mi...

2026-03-04 - Microsoft Security Blog

Global Takedown Neutralizes Tycoon2FA Phishing Service

Law enforcers and industry partners have taken down notorious phishing-as-a-service platform Tycoon2FA

2026-03-04 - Infosecurity Magazine

Zurich Acquires Beazley in $11 Billion Deal to Lead Cyberinsurance

The deal awaits final shareholder and regulatory approvals and is expected to be completed in the second half of 2026. The post Zurich Acquires Beazle...

2026-03-04 - SecurityWeek

Attackers are using your network against you, according to Cloudflare

Blind spots in complex cloud environments allow identity-based attacks to achieve the same outcome as complex malware or zero-day exploits. Sophistica...

2026-03-04 - CyberScoop

LastPass warns of spoofed alerts aimed at stealing master passwords

LastPass warns of a phishing campaign using fake security alerts about unauthorized access or password changes to steal users’ master passwords. LastP...

2026-03-04 - Security Affairs

Dark Reading Confidential: This Threat Hunter Helped Cops Bust Up An African Cybercrime Syndicate

Dark Reading Confidential Episode 15: Interpol relied on Will Thomas and team to help break up a sprawling cybercrime ring, leading to the arrest of 5...

2026-03-04 - Dark Reading

Surge in Attacks on Surveillance Cameras Linked to Iranian Hackers

Increased attempts to compromise surveillance cameras linked to Iran during Middle East conflict

2026-03-04 - Infosecurity Magazine

Hacker Conversations: Inti De Ceukelaire, Raging Against the Machine Creatively

A Belgian national, De Ceukelaire’ did not set out to be a hacker. Like many hackers he was born with the potential to become one and only gradually r...

2026-03-04 - SecurityWeek

Digital.ai expands post-build protection for Android and iOS applications

Software security has reached an inflection point as AI development tools increase the volume and velocity of software releases, while AI is also powe...

2026-03-04 - Help Net Security

Tufin’s AI-powered tools simplify network security operations

Tufin announced its latest AI-powered innovations, enabling customers to utilize its Unified Control Plane to accelerate issue resolution, reduce oper...

2026-03-04 - Help Net Security

Multi-Stage "BadPaw" Malware Campaign Targets Ukraine

Malware campaign uses Ukrainian email service for credibility, deploying "BadPaw" to execute attacks

2026-03-04 - Infosecurity Magazine

Webinar: The True State of Security 2026

AI has become the most popular scapegoat in security. While the risk is real, the obsession is costly. Most security failures don’t start with AI. The...

2026-03-04 - Help Net Security

Over 1,200 IceWarp servers still vulnerable to unauthenticated RCE flaw (CVE-2025-14500)

A critical RCE vulnerability (CVE-2025-14500) in IceWarp, an EU-made business communication and collaboration platform, may be exploited by attackers ...

2026-03-04 - Help Net Security

Does the UK really want to ban VPNs? And can it be done?

Reports of a "Great British Firewall" are exaggerated. And even if they wanted to, here's why it would be virtually impossible.

2026-03-04 - Malwarebytes Labs

Coruna iOS Exploit Kit Uses 23 Exploits Across Five Chains Targeting iOS 13–17.2.1

Google said it identified a "new and powerful" exploit kit dubbed Coruna (aka CryptoWaters) targeting Apple iPhone models running iOS versions between...

2026-03-04 - The Hacker News

Iranian cyberattacks fail to materialize but threat remains acute

Five days into US and Israel’s war with Iran, the worst predictions for cyber-retaliation have yet to materialize. But Iran has built one of the world...

2026-03-04 - CSO Online

Attackers abuse OAuth’s built-in redirects to launch phishing and malware attacks

Researchers have found that attackers are abusing OAuth to send users from legitimate Microsoft or Google login pages to phishing sites or malware dow...

2026-03-04 - Malwarebytes Labs

How Pirated Software Turns Helpful Employees Into Malware Delivery Agents

Employees seeking free versions of paid software may unknowingly install malware-laced “cracked” apps that can steal credentials, deploy cryptominers,...

2026-03-04 - SecurityWeek

High-severity Qualcomm bug hits Android devices in targeted attacks

Google has patched 129 Android vulnerabilities, including an actively exploited flaw in a widely used Qualcomm component.

2026-03-04 - Malwarebytes Labs

From phishing to Google Drive C2: Silver Dragon expands APT41 playbook

APT group Silver Dragon, linked to APT41, targets governments via server exploits and phishing, using Cobalt Strike and Google Drive for C2. Check Poi...

2026-03-04 - Security Affairs

Njordium Vendor Management System eliminates duplicate third-party assessments

Njordium Cyber Group has launched its Vendor Management System (VMS), a platform that eliminates the costly duplication of third-party assessments und...

2026-03-04 - Help Net Security

New RFP Template for AI Usage Control and AI Governance

As AI becomes the central engine for enterprise productivity, security leaders are finally getting the green light — and the budget — to secure it. Bu...

2026-03-04 - The Hacker News

China's Silver Dragon Razes Governments in EU, SE Asia

The emerging actor, part of the APT41 nexus, gains initial access via phishing, and uses legitimate network services to obscure cyber espionage activi...

2026-03-04 - Dark Reading

Calls for Global Digital Estate Standard as Posthumous Deepfake Fraud Risk Grows

The OpenID Foundation warns that fragmented policies on posthumous digital accounts could open the door for fraudsters to exploit AI deepfakes

2026-03-04 - Infosecurity Magazine

Fake Laravel Packages on Packagist Deploy RAT on Windows, macOS, and Linux

Cybersecurity researchers have flagged malicious Packagist PHP packages masquerading as Laravel utilities that act as a conduit for a cross-platform r...

2026-03-04 - The Hacker News

Anthropic AI ultimatums and IP theft: The unspoken risk

Two recent high-profile events concerning Anthropic’s Claude AI underscore a little-discussed risk at the heart of the enterprise’s rush to capitalize...

2026-03-04 - CSO Online

U.S. CISA adds Qualcomm and Broadcom VMware Aria Operations flaws to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Qualcomm and Broadcom VMware Aria Operations flaws to its Known Exploited Vulnerabil...

2026-03-04 - Security Affairs

Data breach at University of Hawaiʻi Cancer Center impacts 1.2 Million individuals

A ransomware attack on the University of Hawaiʻi Cancer Center exposed personal data of 1.2 million people. A 2025 ransomware attack targeting the Uni...

2026-03-04 - Security Affairs

APT41-Linked Silver Dragon Targets Governments Using Cobalt Strike and Google Drive C2

Cybersecurity researchers have disclosed details of an advanced persistent threat (APT) group dubbed Silver Dragon that has been linked to cyber attac...

2026-03-04 - The Hacker News

How to know you’re a real-deal CSO — and whether that job opening truly seeks one

Recruiters of senior-level IT professionals often say that a truly skilled and experienced CSO is among the hardest of all IT roles to fill. The reaso...

2026-03-04 - CSO Online

Possible U.S.-developed exploits linked to first known ‘mass’ iOS attack

Researchers traced the kit moving from a spyware vendor’s customer to Russian hackers to Chinese cybercriminals. The post Possible U.S.-developed expl...

2026-03-03 - CyberScoop

Indian APT 'Sloppy Lemming' Targets Defense, Critical Infrastructure

India-nexus cyber threat actors are growing more active and sophisticated, using custom tools coded in Rust and cloud-based command and control.

2026-03-03 - Dark Reading

Signed malware impersonating workplace apps deploys RMM backdoors

Signed malware backed by a stolen EV certificate deployed legitimate RMM tools to gain persistent access inside enterprise environments. Organizations...

2026-03-03 - Microsoft Security Blog

Researchers discover suite of agentic AI browser vulnerabilities

Through a simple calendar invite, AI browsers like Comet can be directed to access local file systems, browse directories, open and read files, and ex...

2026-03-03 - CyberScoop

Vehicle Tire Pressure Sensors Enable Silent Tracking

Like many other features and systems in modern cars, tire pressure sensors leak sensitive data that can be abused by threat actors.

2026-03-03 - Dark Reading

Pentagon ditches Anthropic AI over “security risk” and OpenAI takes over

At the center of the dispute is how far AI models should be allowed to go inside military systems.

2026-03-03 - Malwarebytes Labs

Chrome flaw let extensions hijack Gemini’s camera, mic, and file access

Researchers found a now-patched vulnerability in "Live in Chrome" that allowed a Chrome extension to inherit Gemini’s permissions.

2026-03-03 - Malwarebytes Labs

OAuth redirection abuse enables phishing and malware delivery

OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users from legitimate sign‑in p...

2026-03-02 - Microsoft Security Blog

Who is the Kimwolf Botmaster “Dort”?

In early January 2026, KrebsOnSecurity revealed how a security researcher disclosed a vulnerability that was used to assemble Kimwolf, the world's lar...

2026-02-28 - Krebs on Security

Threat modeling AI applications

AI threat modeling helps teams identify misuse, emergent risk, and failure modes in probabilistic and agentic AI systems. The post Threat modeling AI ...

2026-02-26 - Microsoft Security Blog

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard build workflows. The acti...

2026-02-24 - Microsoft Security Blog

‘Starkiller’ Phishing Service Proxies Real Login Pages, MFA

Most phishing websites are little more than static copies of login pages for popular online destinations, and they are often quickly taken down by ant...

2026-02-20 - Krebs on Security

Kimwolf Botnet Swamps Anonymity Network I2P

For the past week, the massive "Internet of Things" (IoT) botnet known as Kimwolf has been disrupting the The Invisible Internet Project (I2P), a dece...

2026-02-11 - Krebs on Security

Patch Tuesday, February 2026 Edition

Microsoft today released updates to fix more than 50 security holes in its Windows operating systems and other software, including patches for a whopp...

2026-02-10 - Krebs on Security

Please Don’t Feed the Scattered Lapsus ShinyHunters

A prolific data ransom gang that calls itself Scattered Lapsus ShinyHunters (SLSH) has a distinctive playbook when it seeks to extort payment from vic...

2026-02-02 - Krebs on Security

Student Loan Breach Exposes 2.5M Records

2.5 million people were affected, in a breach that could spell more trouble down the line.

2022-08-31 - Threatpost

Watering Hole Attacks Push ScanBox Keylogger

Researchers uncover a watering hole attack likely carried out by APT TA423, which attempts to plant the ScanBox JavaScript-based reconnaissance tool.

2022-08-30 - Threatpost

Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms

Over 130 companies tangled in sprawling phishing campaign that spoofed a multi-factor authentication system.

2022-08-29 - Threatpost

Ransomware Attacks are on the Rise

Lockbit is by far this summer’s most prolific ransomware group, trailed by two offshoots of the Conti group.

2022-08-26 - Threatpost

Cybercriminals Are Selling Access to Chinese Surveillance Cameras

Tens of thousands of cameras have failed to patch a critical, 11-month-old CVE, leaving thousands of organizations exposed.

2022-08-25 - Threatpost

Noticias en Español

Amazon: Ataques con drones dañan centros de datos de AWS en Oriente Medio

Amazon confirmó que tres centros de datos de Amazon Web Services (AWS) en Emiratos Árabes Unidos (EAU) y uno en Bahréin fueron dañados por ataques con...

2026-03-04 - Segu-Info

Estudio de detección de deepfakes en el mundo real de la Universidad de Purdue

Las deepfakes están evolucionando y ya no se limitan a campañas de desinformación o a la manipulación viral de los medios. La mayoría de los equip...

2026-03-04 - Segu-Info

Incidente físico provoca apagón y caída masiva en centro de datos AWS en Oriente Medio

Un incidente físico en un centro de datos de AWS en Oriente Medio provocó fuego y dejó fuera de servicio recursos críticos como EC2 y RDS, cuestionand...

2026-03-04 - Una al Día

Cómo comprobar si un Web Site is Quantum Ready con Post-Quantum Cryptography usando Radar

El equipo de Radar en Cloudflare sigue añadiendo transparencia a lo que sucede en Internet, y apoyando al despliegue de un Post-Quantum Ready Internet...

2026-03-04 - El Lado del Mal

7 tips para detectar apps móviles falsas

Estos son los 7 consejos que debes tener en cuenta para mantenerte alejado de amenazas para dispositivos móviles: cómo identificar una app maliciosa y...

2026-03-03 - WeLiveSecurity

Ataque AirSnitch evita el cifrado de Wi-Fi

Es difícil exagerar el papel que desempeña el Wi-Fi en prácticamente todos los aspectos de la vida. La organización que gestiona el protocolo inalám...

2026-03-03 - Segu-Info

APT28 vinculada a la explotación real de un 0-day de MSHTML (CVE-2026-21513) antes del Patch Tuesday de febrero

Akamai ha relacionado a APT28 con la explotación en ataques reales de CVE-2026-21513, un 0-day de MSHTML corregido por Microsoft en el Patch Tuesday d...

2026-03-03 - Una al Día

Cómo migrar Arkanoid de C++ a TypeScript con OpenCode y desplegarlo en Workers de Cloudflare

Hola a todos los lectores de El lado del mal. Soy Carlos Luengo, recientemente he comenzado una nueva etapa profesional y acabo de aterrizar en Cloudf...

2026-03-03 - El Lado del Mal

Living off the Land 2.0 en Linux: Persistencia para pasar desapercibidos al SOC

Hay una regla no escrita en intrusiones modernas: El mejor malware es el que no parece malware. Pero hay una evolución aún más interesante q...

2026-03-02 - Hackplayers

WiFi DensePose: ¿ver a través de las paredes con WiFi?

WiFi DensePose convierte las señales WiFi comunes en estimación de la postura humana en tiempo real, monitorización de constantes vitales y detecció...

2026-03-02 - Segu-Info

ClawJacked: una web maliciosa puede secuestrar OpenClaw a través de WebSockets en localhost

La vulnerabilidad ClawJacked permite que una web maliciosa se conecte desde el navegador a un WebSocket expuesto en localhost por el gateway de OpenCl...

2026-03-02 - Una al Día

RootedCON Madrid 2026 - Mi charla y cómo conseguir tu entrada con Tempos

Un año más, RootedCON va a continuar haciéndose más grande. Y en esta edición 2026, un año más, yo voy a estar allí para dar una charla...

2026-03-02 - El Lado del Mal

Heretic o cómo eliminar fácilmente la censura en un LLM

Los modelos de lenguaje actuales (los conocidos LLM, Large Language Models) se han convertido en piezas clave de muchas aplicaciones: asistentes, anál...

2026-03-01 - Hackplayers

Cómo identificar perfiles anónimos de una plataforma online en Internet usando LLMs y Agentes IA

Descubrir quién se oculta detrás de una cuenta de Twitter/X anónima, o de quién es en realidad un usuario de un foro de la DeepWeb, o de cualquier red...

2026-03-01 - El Lado del Mal

Una investigación revela cómo el consentimiento OAuth a ChatGPT en Entra ID puede exponer el correo corporativo

Una investigación reciente basada en un caso real muestra que autorizar permisos a ChatGPT en entornos empresariales con Entra ID puede derivar en un ...

2026-03-01 - Una al Día

Recomendación de expertos: Prepárese para la PQC ahora mismo

Las computadoras cuánticas no estarán disponibles hasta dentro de una década. ¿Por qué preocuparse ahora? Un experto en criptografía lo explica. ...

2026-02-28 - Segu-Info

Alerta de Ciberseguridad: Claves de API de Google «Inofensivas» ahora Exponen Datos Críticos de Gemini AI

Lo que ayer era una práctica común y segura, hoy se ha convertido en una vulnerabilidad crítica que compromete la privacidad de datos corporativos y l...

2026-02-28 - Una al Día

ORCA Benchmark Version 2: Algunas mejoras, pero sólo una IA llega al Notable.

En el mes de Noviembre del año pasado os hablé de "El Benchmark de la ORCA que suspende en cálculo a ChatGPT-5 y Claude Sonnet, y aprueba por los pelo...

2026-02-28 - El Lado del Mal

Los permisos de las aplicaciones móviles (aún) importan más de lo que crees

Al empezar a utilizar una nueva aplicación es probable que te pida aceptar permisos, pero hacerlo sin pensar puede exponerte a graves riesgos de priva...

2026-02-27 - WeLiveSecurity

Cuáles fueron los malware más activos en Latinoamérica durante 2025

Un análisis de los tres tipos de malware con mayores detecciones en la telemetría de ESET durante el año pasado, con detalles sobre a qué sistemas afe...

2026-02-27 - WeLiveSecurity

Un cibercriminal manipula al chatbot Claude para infiltrarse en agencias del gobierno mexicano

Un atacante usó IA para robar 150 GB de datos del gobierno mexicano, exponiendo cómo la automatización potencia tanto el cibercrimen como las defensas...

2026-02-26 - WeLiveSecurity

Sistemas PAM: un escudo para la protección de accesos

Sistemas PAM: un escudo para la protección de accesos Autor INCIBE (INCIBE) Jue, 26/02/2026 - 15:52 ...

2026-02-26 - INCIBE-CERT

Cómo reconocer llamadas falsas con IA: una amenaza creciente para las empresas

Cada vez es más difícil distinguir lo real de lo generado por inteligencia artificial, y la suplantación de voz ya se usa para atacar a empresas. ¿Cóm...

2026-02-25 - WeLiveSecurity

PentAGI: Automatización avanzada de penetration testing con agentes AI autónomos

En los últimos años, el pentesting ha evolucionado desde procesos manuales altamente especializados hacia flujos híbridos donde la automatización y la...

2026-02-22 - Hackplayers

Estudio sobre las infraestructuras cloud en SCI

Estudio sobre las infraestructuras cloud en SCI Autor INCIBE (INCIBE) Jue, 19/02/2026 - 13:08 ...

2026-02-19 - INCIBE-CERT

Writeups CTF Hardware Hacking h-c0n 2026

Desde que fundamos la conferencia h-c0n uno de nuestros “sueños” era tener nuestro propio badge electrónico, al más puro estilo DEF CON. No ha sido ha...

2026-02-17 - Hackplayers

Técnicas de evasión de seguridad en endpoints: evolución (2020–2025)

El surcoreano Hyeongkwan Lee aka WindShock analizaba recientemente en un post cómo, entre 2020 y 2025, las técnicas de evasión de EDR y anti...

2026-02-15 - Hackplayers

Configuración de seguridad de un endpoint Windows

Configuración de seguridad de un endpoint Windows Autor INCIBE (INCIBE) Vie, 23/01/2026 - 10:00 ...

2026-01-23 - INCIBE-CERT

Redes privadas 5G: Guía de buenas prácticas en ciberseguridad

Redes privadas 5G: Guía de buenas prácticas en ciberseguridad Autor INCIBE (INCIBE) Jue, 18/12/2025 - 17:30 ...

2025-12-18 - INCIBE-CERT

Seguridad de las API

Seguridad de las API Autor INCIBE (INCIBE) Lun, 24/11/2025 - 11:06 En sus inici...

2025-11-24 - INCIBE-CERT

(2/3) Ataques DDoS en capas 3 y 4: vectores, funcionamiento y defensa

Esta es la segunda entrega sobre amenazas DDoS, en esta ocasión nos adentramos en las capas de red y transporte para analizar los vectores más comunes...

2025-10-27 - Flu Project

ISO/IEC 42001: el sistema de gestión de IA que probablemente conectemos con nuestra 27001

ISO/IEC 42001 se concibe como el nuevo esqueleto operativo para transformar la inteligencia artificial en un sistema gestionado con disciplina. No es ...

2025-10-13 - Flu Project

MITRE AADAPT: Anatomía ofensiva y defensa en el ecosistema de activos digitales

Cuando uno pasa demasiadas noches frente a un nodo de Ethereum observando tráfico, firmas, anomalías y patrones sospechosos, descubre que el ecosistem...

2025-10-06 - Flu Project

Snapshots en máquinas virtuales: ¿una herramienta útil o un riesgo oculto?

¿Piensas que una instantánea de una máquina virtual es lo mismo que un backup o una copia del disco? Entonces este post es para ti.Antes de nada, vamo...

2025-09-29 - Flu Project

La importancia del Disaster Recovery Plan (DRP)

A pesar de que los ciberataques, fallos de hardware y software, desastres naturales, o incluso errores humanos son cada vez más frecuentes, muchas emp...

2025-09-15 - Flu Project

Pensar como un atacante: por qué el Red Team es clave para la ciberseguridad moderna

En un entorno digital donde las amenazas evolucionan más rápido que las soluciones, protegerse ya no es suficiente. Hay que anticiparse. Y para eso, e...

2025-07-01 - BlogThinkBig

Cómo saber si una app es falsa: ten siempre en cuenta estas claves

Vivimos constantemente con el móvil en la mano; es un dispositivo que usamos para casi todo. Hoy en día es útil tanto para cosas como pagar el café, c...

2025-06-17 - BlogThinkBig

Cómo proteger el ordenador sin ser un genio tech

Saber cómo proteger el ordenador nunca ha sido tan vital. Imagina perder tu equipo con Windows y no saber si tus datos personales están seguros. El pá...

2025-06-13 - BlogThinkBig

Privacidad en Internet: evita el rastreo y navega con seguridad

La privacidad en Internet se ha convertido en una preocupación constante. Es así como cada clic, búsqueda o interacción en línea puede dejar una huell...

2025-06-12 - BlogThinkBig

Álbum oculto: paso a paso para activarlo en tu teléfono Android

Las fotos y vídeos revelan un montón de información de tu vida personal. No siempre queremos que estén a la vista. Es por eso que en este artículo hab...

2025-06-06 - BlogThinkBig