CyberSecurity Pulse 2017-12-12
In this newsletter, our intelligence analysts comment on the Program for Civilian Cybersecurity Experts aproved by The Army. Don’t miss out!
Latest News
Dec 2017
CyberSecurity Pulse 2017-12-05
In this newsletter, our intelligents analysts comment on the top ten list of web app vulnerabilities. Don’t miss out!
ElevenPaths Talks: Open Data… much to see
Do you want to learn about Open Data and legal implication to those who use this public information?
Volunteering and training in cybersecurity
On the International Cybersecurity Day, ElevenPaths volunteers, together with the support of the ANAR Foundation, gave some workshops on cybersecurity and cyberbullying to students, teachers and parents.
Meet the hacker from Malaga that who followed the clues to Bin Laden
With his team of hacker, Sergio de los Santos runs our Innovation Lab in Malaga. He has followed the clues to Bin Laden and discovered many things.
Nov 2017
Dumpster diving in Bin Laden’s computers
We’ve analized the hard drives that were seized from Bin Laden’s team in Abbottabad and we discovered the passwords in its secret communication.
The attacks record in October forces the extreme security measures
With the elections in Catalonia just around the corner, our expert, Pablo San Emeterio, affirms that any electronic device connected to the Internet can be a victim of a cyberattack.
Code Talks for Devs: building Latch in the palm of your hand
Álvaro Núñez-Romero, one of our ElevenPaths experts, show us in this webinar how to apply Latch to the physical world through a small microcontroller.
Yaiza Rubio: “You can’t stop learning about cybersecurity, you get out-dated inmediately”
Don’t miss out the interview of the first spanish hacker participating in the most important cybersecurity conference of the world.
Blockchain attracts big companies
Banks, telecos, insurance companies and other sectors explore the possibilities of a technology that was born with bitcoin. Two of our intelligent analyst talk about it.
Stories of Telefónica #HackerWomen
Did you know that just 25% of women in the world have a role in technology? We launch the first story of our new series dedicated to women who have a passion and work in technology.
ElevenPaths Talks
Do you know how mobile security system works? This Thursday, our CSAs Claudio Caracciolo and Rames Sarwat, will talk about the security of our device.
The «crazy ideas laboratory» of Telefónica in Málaga
Diario Sur dedicates this article to our Innovation and Laboratory team, who is in charge of exploring the future of computer security and testing improvements for all Telefónica Digital products and services.
TOP 10 Cybersecurity Influencers in Spain
ADECCO brings us the top 10 influencers of information security. Three of our experts are on this list: Chema Alonso, Alejandro Ramos and Pablo Gonzalez.
CyberSecurity Pulse 2017-11-14
In this newsletter, our intelligents analysts research the last disaster of Ethereum’s most important wallets. Don’t miss out!
Code Talks for Devs: Latch Cloud TOTP in NodeJS and .NET
Did you miss #CodeTalks4Devs about Latch Cloud TOTP in NodeJS and .NET? Our programmer experts, Carlos del Prado and Ioseba Palop, teach you how manage the TOTP tokens as 2FA. Connect to the webinar!
Mobile Apps Know Everything You´re Talking About and you Can’t Avoid It
Our Innovation and Laboratory director, Sergio de los Santos, said that recognition and voice processing has been among us for a long time, any application can process what is being said. Go to ‘El Confidencial’ and learn about it!
Google Has A Big Fake WhatsApp Problem – Here’s Why
Our security researcher, Sergio de los Santos, said that whilst Google has patented technology to improve detection of rogue apps, the fraudsters have found new ways to get their software on the official market. Know more about it!
ElevenPaths Talks: The Hidden Face of Steganography
Don’t miss out this Thursday at 3.30pm (CET) in our YouTube channel the webinar about steganography techniques and tools to find out the hidden information in several formats and protocols. Take note!
Investigation report on the cyber identity “Maksim”
Our team of analysts have identified a new threat actor called Maksim that develops malware for Android devices. It has been attributed with the distribution of numerous malicious applications through various websites for purely economic purposes. Download the report!
Oct 2017
Code Talks for Devs: DirtyTooth, Installation in your Raspberry With a DEB Package
Learn with our experts Álvaro Núñez-Romero and Pablo González how to created your own DirtyTooth in a Raspberry Pi thanks to the basic installation package that we have developed in our inovation lab. Don´t miss it!
ElevenPaths Talks: The Inevitable Evolution of Managed Security
Learn in this webinar with our CSAs Jorge Rivera and Rames Sarwat, together with a special guest, about managed security and the evolution to the concept of Intelligent MSSPs. Don’t miss it!
Whitepaper “Windows Malicious Events Detection with Security Monitoring”
We explain how to detect a sucession of events, not necessarily security related, giving hints to consider a Windows Machine jeopardized, using for that purpose Security Monitoring product. Check it out!
SKrYPtEd New Tool
Did you know that conversations in Skype can be stored in plaintext in a computer´s hard drive? Use SKrYPtEd to decypher them and keep using the software as always. Let’s hack!
Pedro Pablo Pérez: “There Won’t Be Digital Transformation Without Cybersecurity”
Don’t miss out the interview with our CEO Pedro Pablo Pérez, and Juan Antonio Gómez Bule, president of Walhalla Datacenter Services in Forbes magazine. They talk about the cyber attacks that we are currently suffering. Access to the full interview
New Trend Report: “State of Cybersecurity in Spanish companies”
Thanks to the information provided by BitSight, we presented this study which aim is based on showing the state of cybersecurity in Spanish companies but also those companies which are included in the IBEX 35. Download here!
CyberSecurity Pulse 2017-10-17
This time our intelligence analysts evaluate the attack against the WPA2 encryption that poses a threat to our wireless security. Register to the newsletter!
Code Talks for Devs: Implementing Data Exfiltration With Latch’sApp
In this session, our experts Álvaro Núñez-Romero and Pablo González discuss about the protection of information in messages and files through bits code by using our Latch’sApp tool. Hit play!
Security Innovation Day 2017: Security Rocks!
Did you miss the annual event of innovation in cybersecurity? We already have all the presentations and videos available. Enter to the official website of the event!
ElevenPaths Talks: Monitoring and Alert Management
In this webinar our CSAs Pablo San Emeterio and Diego Espitia, together with a special guest, will teach general concepts of monitoring and alert systems management, and implementation issues. Find out more!
Security Innovation Day 2017: Security Rocks!
Don’t miss out the cybersecurity innovation event of the year. We hope that you can join us on October 5th at the Telefónica Auditorium, Madrid. Stay tunned the event through #SID2017 hashtag at our @ElevenPaths account!
Spanish Hackers Cheat Tinder to Follow Any User’s Location
Julio García, ElevenPaths expert, has developed a tool that is able to follow any user’s location in Tinder, a simple dating app, and show it in full detail on a map. Discover it!
FOCA Open Source
Don’t miss the Open Source version that our developers have created to help you cotribute in FOCA and make the most out of it. Get to know!
Two steps SMS verification in not enough
The mobile phone is a perfect second key to allow access to social networks and services, but is preferable to avoid calls and text messages. Read more!
Sep 2017
Our Chairman Chema Alonso says that companies take up to 6 months to detect intruders in their networks
Go to the interview in which our ethical hacker talks about the current situation of computer atacks. Don’t miss any detail!
Code Talks for Devs: SDK Go for Latch
Learn how to create an SDK Go, Google´s programming language for our app Latch. Our experts, Fran Ramírez, with special guest Rafael Troncoso teach us how to do it. Learn from our experts!
Security Innovation Day 2017
We are just a few days away from the annual event in cybersecurity innovation. Dont miss it! Register here to follow it in streaming wherever you are.
ElevenPaths Talks: Fog / Edge / Cloudlet Computing
Are we again in the presence of an ingenious marketing name or something that makes a difference in the world of the IoT? Our CSAs, Carlos Ávila y Claudio Caracciolo tell us! Learn more!
Inside Elections Germany: Threats to the German Electoral Process
On this report we explain how the German government has been affected by cyberattacks, phising and miss information all leading to the October 24th elections. Download it here!
Cibersecurity Pulse_
Our analysts team reflect on the most relevant news about cybersecurity. Discover how Kaspersky has been defending its products againsta American institutions. Sign up to our Newsletter!
New portfolio of products and services
We´ve a renewed and reorganized our product catalog to offer better solutions on cybersecurity, improving your experience on our web page. Visit and discover all the updates!
ElevenPaths Code Talks for Devs
In the first episode of the new series of webinars, our hacker, Javier Espinosa, reveals how to use Latch´s webhooks and leave behind the polling strategy. Find out everything!
Extensive interview to Chema Alonso in FayerWayer media
The best known hacker in Spain talks about corporations, complex cyber atacks and being on holidays during the WannaCry attack. Don’t miss it!
ElevenPaths Talks: Securing Industrial Systems
In this session, our CSAs Gabriel Bergel and Carlos Ávila with a special guest, will reveal which are the successful technologies that are able to protect the industrial networks and which are destined to fail. Find out more!
Aug 2017
Events Calendar for September
Back to school! The Agenda is now available so you can update yourself about cybersecurity and hacking in September. Check it out!
ElevenPaths Talks: Artificial Intelligence and Machine Learning
Our experts Diego Espitia and Rames Sarwat will speak with a special guest about Artificial Intelligence and Machine Learning detailing the innovation from both optics applied to security. Find out!
Cybersecurity Pulse_ Insight about security
Available the new installment in which our inteligents analists will discuss about Coco, an open source framework by Microsoft for enterprise blockchain networks. Discover it!
New series of webinars: ElevenPaths Code Talks for Devs
The first webinars series of programming webinars for developers with the most geeks theme.
If you have hacker spirit, take part in our free online seminar where we discuss about programming languages, code, technical integrations, APIS… and more.
New Tool: Dirty Tooth for Raspberry Pi
We present the new tool that shows the implementation of the speaker in software format. Access here to know and be the first to download it.
ElevenPaths Talks: Defensive Security vs Ofensive Security
Our experts Claudio Caracciolo and Jorge Rivera, with an special guest, will analyze the pros and cons of Defensive Security and Offensive Security. Find out more!
Yaiza Rubio, the first Spanish woman to participate in the macro encounters of hackers DefCON and Black Hat
Don´t miss the ABC interview with our intelligence analyst and hacker Yaiza Rubio. She has become the first Spanish woman to participate in the two more importants events of hackers in Las Vegas: DefCON and Black Hat. Find it!
Cybersecurity Pulse_ Insight about security
Available the new newsletter of our intelligence analysts team in which they will analyze how a Bitcoin fork has created a new cryptocurrency. Discover it!
ElevenPaths Talks Special Edition: Drone Tinder
Do you know bots in Tinder could monitor your location?Our experts Pablo San Emeterio and Julio García show us in this webinar all you need to know about Drone Tinder. Watch the video here!
Agenda of events in August to be up to date in computer security
Don’t miss our selection of events for the entire month where you can take advantage of the knowledge shared by experts in the ecosistem. ¡Check more info here!
Jul 2017
ElevenPaths Talks Special Edition: mASAPP, continual discovery and analysis of mobile apps
Our experts Víctor Mundilla and Álvaro Rodríguez tell us about mASAPP, the new platform developed by ElevenPaths for the autonomous discovery and analysis of mobile applications security. Don´t miss it!
Whitepaper “Hidden Networks: Detecting Hidden Networks created with USB Devices”
This report reflects the possibilities provided by the so-called Hidden Network and how these can be identified and focused on protection of these issues inside a corporate network. Download it!
CyberSecurity Pulse_ Insight about security
New installment in which our inteligents analists discuss about the Microsoft’s effective war against Fancy Bear. Sign it and be update in cybersecurity!
ElevenPaths Talks: Differences between NOC, SOC and CyberSOC
What are the differences between NOC, SOC and CyberSOC? ¿What are their functions and objectives? Our CSAs Pablo San Emeterio and Gabriel Bergel, together with a special guest, will solve this questions in this webinar. Don’t miss out this Talk!
ElevenPaths and Subex sign a global framework agreement to provide a disruptive FMaaS solution
The agreement between Elevenubex’ to protect against a comprehensive set of dPaths and Subex will result in the new technology solution ’Telefonica FMaaS Powered by Sigital risks and threats, along with a library of fraud detection processes.
Interview with Yaiza Rubio before DefCON & BlackHat
Chema Alonso interviews our intelligence analyst Yaiza Rubio who talks about the most important event of the year in cybersecurity, DefCON & BlackHat. She will also explain how she began in the digital world. Meeting our female hacker!
CyberSecurity Pulse
Don’t miss the cybersecurity news of our newsletter. In this installment we talk about tensions between Russia and United States affects Kaspersky Lab.
What are you waiting for subscribe?
Inside Elections UK: Twitter interaction during UK Elections
In this report we analyze the Twitter conversations held in June 8th; the day the UK general elections took place. Find out more!
CyberSecurity Pulse
It is available the new newsletter in which we show that Google will stop reading your emails for Gmail Ads. Interested in the case details? Subscribe now!
ElevenPaths Talks: PinPay and Security in Micro Payments
What are micro payments? How does it affect the security of the payment process? Our CSAs Jorge Rivera and Pablo San Emeterio, together with a special guest, will solve your doubts. Are you interested? Then make sure you’re attending!
Jun 2017
New products portfolio
We increase our catalogue with 10 products offering innovative and disruptive cybersecurity solutions. Visit its sites to discover all the news. You can’t lose it!
ElevenPaths Talks: Out to Capture Victims
Learn with our CSAs Gabriel Bergel and Arsen Laurent the evolutions of Phishing, Smishing, Vishing and Spear Phishing techniques, and prevent being victim of cybercrime. Don´t miss it!
Telefónica and Bitsight deliver enhanced visibility into supply chain risk with continuous monitoring.
ElevenPaths, Telefónica Cibersecurity Unit, and BitSight, the Standard in Security Ratings, have announced a new alliance that will enhance visibility into supply chain risk for Telefónica customers worldwide.
Inside elections
We present a new section with reports about electorals cyber risks. In this installment we show you Iran case. Are you going to miss it?
ElevenPaths Talks: Is It Possible to Prevent Fraud?
In this webinar, Diego Espitia and Rames Sarwart, together with a special guest, will show types of fraud and the most common tools and solutions in the market. Come and join us!
![[Video] Security Day 2017_Cybersecurity beats](../../../../wp-content/uploads/2017/06/miniatura_SD_video.jpg)
[Video] Security Day 2017_Cybersecurity beats
Did you miss the Security day 2017? Go to our Youtube channel and relive the event of the year. Discover the news!
![[Press clipping] Security Day 2017_Cybersecurity beats](../../../../wp-content/uploads/2017/06/miniatura_SD_video_cobertura-de-prensa.jpg)
[Press clipping] Security Day 2017_Cybersecurity beats
ElevenPaths Security Day comes back to Madrid in its fourth edition under the theme “Cybersecurity beats”.
May 2017
ElevenPaths participa en JNIC 2017 y sus retos científicos, impulsando la investigación de ciberseguridad
ElevenPaths tendremos doble presencia en esta edición, por un lado, seguimos apostando por la contribución científica, nos involucramos de manera activa en el Track de Transferencia, arrancando este prometedor programa de investigación definido a través de retos científicos.
Security Day 2017: Cybersecurity beats_
Do you have plans to may31st? Save the date in your agenda! We hope that you can join us on May 31st at the Telefónica Auditorium, Madrid. Don´t miss out!
Security Day 2017: CyberSecurity Beats
Don’t miss out the security and technology event year. We hope that you can join us on May 31st at the Telefónica Auditorium, Madrid. Stay tunned the event through #SD2017 hashtag at our @ElevenPaths account!
ElevenPaths Talks: Cryptography, Cryptocoins and Suchlike
Our experts Rames Sarwat and Jorge Rivera, together with a Chema Alonso as a special guest, will talk about solutions as Trusted PKI for IoT, cryptocoins and Blockchain. Don’t miss out the webinar!
Tool: Latch Antiransomware
Discover how our Latch ARW tool protects against encryption of WannaCry documents. Watch the video!
How can we recover information deleted by WannaCry?
Discover how our Latch ARW tool protects against encryption of WannaCry documents. Watch the video!
Joint investigation about the mobile banker threat conducted by Check Point and ElevenPaths
Don’t miss out the last investigation conducted by ElevenPaths and Check Point to fight against the mobile malware at banking sector. Do you want to know what they have discovered? Read here the full investigation!
ElevenPaths Talks: Securing the Hosts (paranoid mode)
Este jueves a las 15.30h (CET) tienes una cita con los expertos Arsene Laurent y Gabriel Bergel en nuestro canal de YouTube para ver la sesión “Asegurando los host (modo paranoico)”. ¡Conéctate!
Research report “Data Leak from MacronLeaks”
The latest data breach case affected MacronLeaks. ElevenPaths’ intelligence analysts team reveal the details of in this research report. Download the new report and find out more!
New plugin to FOCA: SCT Checker
ElevenPaths Lab creates a new FOCA plugin to query the SCT for an embedded certificate and all of its corresponding information. Get it now!
Mum, I want to be a hacker #hackerwomen
What if your daughter said to you… “Mom, I want to be a hacker!”? Share the video and tell us how you became a hacker #hackerwomen
ElevenPaths and the University of Piraeus in Greece work together using Tacyt as an educational and research unit
ElevenPaths and the Department of Informatics of the University of Piraeus in Greece start a joint collaboration which aims to perform studies and research activities on mobile applications.
Apr 2017
Protect and Secure Your Company’s Reputation from Attackers
Pedro Pablo Pérez, CEO de ElevenPaths, habla en esta vídeo entrevista de News Watch TV sobre cómo afectan los ciberataques a la reputación de las compañías.
Google’s annual Android security report
ElevenPaths Lab and Innovation Area analyzes the Google’s annual Android security report. Do you want to know what they have discovered? Read our conclusions!
Playing with messaging apps
Don’t miss out this new online free webinar where our experts CSAs, Gabriel Bergel and Claudio Caracciolo talks security bugs in apps as WhatsApp, Telegram or Line. Sign up now!
Si tu amigo te envía un archivo de gatitos, ¡no te fíes!
José Torres, experto de ElevenPaths, analiza para los alumnos de Informática cómo vuelven a cobrar actualidad los virus y ‘malware’ ocultos en los programas de uso más común.
New Trend Report “Financial Cyber Threats Q1 2017″ conducted with Kaspersky Labs and Telefónica
The ElevenPaths’ Analyst team gives you a quarterly update on the latest tendencies of cyber attacks in financial sector. You can now download the full Financial CyberThreats Q1 2017 report conducted by Kaspersky Labs and Telefónica. Download the full report
ElevenPaths is now a NoMoreRansom.org associated partner
The www.nomoreransom.org platform has a clear mission: on one hand, to support and enable ransomware victims to get their files back without paying the criminals.
Breaking Applications by Pablo San Emeterio y Diego Espitia
Don’t miss out this new online webinar (it’s free!) about how Breaking Applications in Ethical Hacking process. Sign up now!
Mar 2017
New Tool Certificate Transparency
Our Lab team has develop a new tool. The new extension that implements Certificate Transparency in Firefox. Get it now!
DirtyTooth: Es nuestro Rock’n’Roll
Conoce más sobre DirtyTooth, el hack que revela el peligro que corre tu privacidad si usas bluetooth en ciertos dispositivos iOS. ¡Descúbrelo aquí!
Cómo explotar en tres pasos la información de OpenStreetMap
Nuestra analista Yaiza Rubio muestra cómo explotar la información de OpenStreetMap, y realiza una reflexión sobre el uso de esta según las motivaciones de los usuarios. ¡Echa un vistazo!
Sergio de los Santos en La Mañana TVE
Sergio de los Santos, nuestro responsable del área de Investigación, habla para el programa La Mañana TVE sobre recientes estafas telefónicas que se están realizando.
Cómo mejorar la seguridad de tu organización con soluciones PAM
En esta nueva entrega conoce los beneficios y casos de uso de las soluciones PAM que te permiten mejorar la seguridad de tu organización mediante la gestión de cuentas privilegiadas.
Buenas y malas noticias sobre Cloudbleed
¿Quieres saber cómo sucedió el reciente ataque a Cloudflare? ¿Y conocer las medidas de mitigación tomadas? Nuestros analistas te explican los detalles.
Trend Report “Vulnerabilities Trends in the Second Semester of 2016″
ElevenPaths’ analyst team updates you on vulnerability trends. Don’t miss out on this new research report where you will find the analysis corresponding to the second semestre of 2016. Get the full report!
Bitcoin. La criptomoneda precursora que abrió la caja de Pandora
No te pierdas el último post de nuestro investigador Marcos Arjona donde habla en esta ocasión de Bitcoin, la criptomoneda que fue imprescindible en la evolución de blockchain. ¡Descubre más!
La importancia del control de las cuentas privilegiadas
El 80 % de los incidentes de seguridad implican el robo de credenciales privilegiadas. En esta serie de posts podrás conocer soluciones para el control de cuentas privilegiadas y cómo mejorar su seguridad con Latch.
Análisis, aclaraciones y primeras curiosidades sobre #Vault7
Sergio de los Santos, responsable de nuestra área de Investigación, profundiza y aclara aspectos de la revelación que Wikileaks ha publicado sobre la CIA bajo el nombre Vault7. ¡Descubre más aquí!