Back 40 companies improve their cybersecurity with the BAS project

2024 / 07 / 16
ZIURek BASen (Breach and attack simulation) enpresa-zibersegurtasuna ebaluatzeko proiektuaren bigarren edizioa burutu du. Guztira 19 enpresak hartu dute parte, eta, lehen edizioko 21 enpresekin batera, 40 enpresa izan dira orotora ekimen honetan parte-hartzaile.

40 companies improve their cybersecurity with the BAS project

ZIUR has carried out the second edition of the BAS (Breach and attack simulation) project to evaluate business cybersecurity, in which a total of 19 companies have participated for one year, which together with the 21 of the first edition, make a total of 40 companies benefited from this initiative.

The project, developed to evaluate and improve the level of cybersecurity maturity in terms of protection against cyberattacks, addresses two of the main steps in the life cycle of an attack: first infiltration and presence on the network.

Regarding the methodology, for each company the following phases have been repeated twice: execution of tests, analysis of results, preparation of the technical report, discussion of alerts and preparation of the executive report. In relation to the attack vectors analyzed, the following have been chosen: Email, endpoint and lateral movement.

ZITU, a consolidated software developer from Donostia and participant in the BAS project, has defined this initiative as “an opportunity to prepare for challenges and continue strengthening the company's defenses.”

Results report

Likewise, ZIUR has prepared a report, in which it presents the results obtained in the project, with respect to the cybersecurity posture of each of the participating companies, taking into account, on the one hand, the methodology followed and, on the other, the 3 vectors used in the project.

On the other hand, the document includes the 5 tactics, techniques and procedures to which companies have been most vulnerable (TTPs), as well as a proposal for remedial actions to protect against them.

Download the report here.