{"id":5688,"date":"2023-09-19T15:12:18","date_gmt":"2023-09-19T18:12:18","guid":{"rendered":"https:\/\/base4sec.com\/sin-categorizar\/cyber-deception-more-than-a-lure\/"},"modified":"2023-09-19T15:12:18","modified_gmt":"2023-09-19T18:12:18","slug":"cyber-deception-more-than-a-lure","status":"publish","type":"post","link":"https:\/\/base4sec.com\/en\/technical-en\/cyber-deception-more-than-a-lure\/2023\/09\/19\/","title":{"rendered":"Cyber Deception more than a lure"},"content":{"rendered":"<p class=\"cuerpo-nota\">The field of active cyber defense becomes relevant when we have a set of defensive measures in place for our environments that we can call &#8220;passive&#8221;. This is where we find cyber deception strategies as a way to &#8220;change the game&#8221; for our organization&#8217;s cyber defense. In this post we will develop some practical and limited examples on how to implement this strategy to the technological infrastructure without the need for an extensive budget and develop some more context on the variants to perform these operations.<\/p>\n<p><span class=\"subtitulo-nota\">From honeypot to the cyber deception<\/span><\/p>\n<p><b>Fake targets<\/b><br \/>\nWe have long recognized &#8220;honeypot&#8221; services as an element that we can implement in our environment to fake a real service and propose a kind of trap for a potential cyberattacker to use it and, in the best case, try to perform an exploit. Among these solutions, we can find some such as:<\/p>\n<p><a href=\"https:\/\/www.honeyd.org\/\">HoneyD<\/a>: Virtual Honeypot Management Platform<\/p>\n<p><a href=\"https:\/\/github.com\/bhdresh\/Dejavu\">DejaVu<\/a>: Virtual Honeypot Management Platform<\/p>\n<p><a href=\"https:\/\/github.com\/desaster\/kippo\">Kippo<\/a>: Medium Interaction SSH Honeypot<\/p>\n<p><a href=\"https:\/\/github.com\/schmalle\/Nodepot\">Nodepot<\/a>: Nodejs Honeypot<\/p>\n<p><a href=\"https:\/\/github.com\/sec51\/honeymail\">HoneyMail<\/a>: SMTP Honeypot<\/p>\n<p><a href=\"https:\/\/github.com\/omererdem\/honeything\">HoneyThing<\/a>: IoT (TR-069) Honeypot<\/p>\n<p><b>Note<\/b>: We will focus on the implementation of these types of solutions as defensive tools and not as tools for intelligence gathering or reconnaissance of cyberattackers (these are different approaches).<\/p>\n<p>With this type of solution, if we add a new service to our infrastructure that has no other purpose than to be a trap, we can assume that the false positive rate will be low and any activity on it will be of value for threat detection.<\/p>\n<p><span class=\"subtitulo-nota\">Expanding the surface<\/span><\/p>\n<p>In this type of technique, we attempt to increase the attack surface within our production services with the goal of creating traps that are fully rooted in our organization&#8217;s real services. Traps are implemented in our production devices, which can be, for example, additional ports, unused functions, fictitious users, fake tokens, email addresses, or other functional elements that act as traps within the same services that are being used.<\/p>\n<p>We can separate this type of techniques from the typical honeypots, considering that the latter are individual objects within the network, which we can separate more clearly.<\/p>\n<p>Among these strategies we can find projects such as\u00a0<a href=\"https:\/\/canarytokens.org\/generate\">Canary Tokens<\/a>\u00a0from which we can manually generate our &#8220;Canaries&#8221; to distribute in the different spaces where we want to perform the detection.<\/p>\n<p><center><img decoding=\"async\" src=\"https:\/\/wwww.base4sec.com\/assets\/images\/blog\/nota_58a.png\" \/><\/center>&nbsp;<\/p>\n<p class=\"cuerpo-nota\">Some examples include URLs that are specifically designed to wait for an improper connection.<\/p>\n<p><center><img decoding=\"async\" src=\"https:\/\/wwww.base4sec.com\/assets\/images\/blog\/nota_58b.png\" \/><\/center>&nbsp;<\/p>\n<p class=\"cuerpo-nota\">Example Web Token<\/p>\n<p><center><img decoding=\"async\" src=\"https:\/\/wwww.base4sec.com\/assets\/images\/blog\/nota_58c.png\" \/><\/center>&nbsp;<\/p>\n<p class=\"cuerpo-nota\">Web Token Implementation (via Short Url)<\/p>\n<p><center><img decoding=\"async\" src=\"https:\/\/wwww.base4sec.com\/assets\/images\/blog\/nota_58d.png\" \/><\/center>&nbsp;<\/p>\n<p class=\"cuerpo-nota\">Alert by mail when accessing the web token<br \/>\nWe can also find more complex projects such as\u00a0<a href=\"https:\/\/ieeexplore.ieee.org\/abstract\/document\/8998256\">PhantomFS<\/a>\u00a0which describes the design of a file system specifically developed to present different files to an attacker who does not use the correct interface.<\/p>\n<p><center><img decoding=\"async\" src=\"https:\/\/wwww.base4sec.com\/assets\/images\/blog\/nota_58e.png\" \/><\/center>&nbsp;<\/p>\n<p class=\"cuerpo-nota\">This allows the actual data of the productive services to remain &#8220;hidden&#8221; from the eyes of a cyber-attacker accessing the system through &#8220;common interfaces&#8221;.<\/p>\n<p>Finally, we present a tool that can be used both for deployment inside a production server and for creating a honeypot.<a href=\"https:\/\/github.com\/Perdjesk\/portsentry\">Portsentry<\/a>\u00a0allows you to quickly and easily deploy a configuration of dummy ports and automate blocking responses or alerts.<\/p>\n<p><center><img decoding=\"async\" src=\"https:\/\/wwww.base4sec.com\/assets\/images\/blog\/nota_58f.png\" \/><\/center>&nbsp;<\/p>\n<p><center>Portsentry configuration file<\/center>&nbsp;<\/p>\n<p class=\"cuerpo-nota\"><span class=\"subtitulo-nota\">Crumbs to return home<\/span><\/p>\n<p>In a solid cyber deception strategy, &#8220;breadcrumbs&#8221; are considered a useful element. These will be pieces of information, traces that will provide information to the attacker to lead him to our various services that will be used as &#8220;traps&#8221;.<\/p>\n<p>For this purpose, we can use documentation specifically created for this purpose, which could contain, for example, the description of the use of servers, services or usernames that will eventually be our trap services. We can also think of other types of traces, such as simple credential hashes intentionally injected into memory, or simply logs that support our deployed traps as valid elements and resolve some kind of doubt that a cyberattacker can detect.br&gt;<br \/>\n<span class=\"subtitulo-nota\">Some considerations and conclusions<\/span><\/p>\n<p>Understanding the tools available for the implementation of a cyber deception strategy is quickly accessible, even among the options that we could explore for the deployment of a honeypot, we could even use the mere copy of our productive services with some tweaks. Whichever option is chosen, we will have a trap available on our network, and for it to be truly effective, we must first consider two aspects that we will refer to as &#8220;Look&#8221; and &#8220;Do&#8221;.<\/p>\n<p><span class=\"subtitulo-nota\">Look<\/span><\/p>\n<p>The art of deception, as well as social engineering or magic and any other practice where one of the parties is presented with a situation that is somewhat removed from reality, requires a real understanding of the interpretation of the &#8220;deceived&#8221; party. Underestimating a cyberattacker by using a tool without a real understanding of what we are doing can result not only in a lack of effectiveness of our activities, but also in a real increase in risks to our infrastructure, for example, by taking real control of a honeypot service from which new attacks on productive services are launched. Cyber deception activities need to LOOK real.<\/p>\n<p><center><img decoding=\"async\" src=\"https:\/\/wwww.base4sec.com\/assets\/images\/blog\/nota_58g.png\" \/><\/center>&nbsp;<\/p>\n<p><center>Inflatable &#8220;Ghost Army&#8221; tank &#8211; World War II<\/center>&nbsp;<\/p>\n<p class=\"cuerpo-nota\"><span class=\"subtitulo-nota\">Make<\/span><\/p>\n<p>Whichever option is deployed in our cyber-breach strategy, it will be necessary to articulate the alerts and logs (that one of our traps might generate) with specifically designed response procedures. The goals of cyber deception are not only to detect a potential cyber-attacker in our infrastructure, but also to understand their behavior and degrade or disrupt their operations.<\/p>\n<p>We&#8217;ll share some past posts where we introduced you to\u00a0<a href=\"https:\/\/www.linkedin.com\/pulse\/mitre-engage-la-mejor-defensa-es-un-buen-ataque-base4-security\/?originalSubdomain=es\">MITRE ENGAGE<\/a>\u00a0as a model for conducting cyber threat operations, or where you can get started on deploying a<a href=\"https:\/\/www.base4sec.com\/research\/honeypots\/\">Honeypot<\/a>and doing a little\u00a0<a href=\"https:\/\/www.base4sec.com\/research\/honeypots-dos\/\">analysis of the data collected<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The field of active cyber defense becomes relevant when we have a set of defensive measures in place for our environments that we can call &#8220;passive&#8221;. This is where we find cyber deception strategies as a way to &#8220;change the game&#8221; for our organization&#8217;s cyber defense. In this post we will develop some practical and [&hellip;]<\/p>\n","protected":false},"author":5,"featured_media":5316,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_wpcom_ai_launchpad_first_post":false,"footnotes":"","jetpack_post_was_ever_published":false},"categories":[259],"tags":[],"class_list":["post-5688","post","type-post","status-publish","format-standard","has-post-thumbnail","category-technical-en"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.9 (Yoast SEO v27.9) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Cyber Deception more than a lure - BASE4 Security<\/title>\n<meta name=\"description\" content=\"BASE4 Security, consultora de ciberseguridad con presencia en Argentina, Chile, Per\u00fa, Colombia, M\u00e9xico y Espa\u00f1a. Servicios de CyberSOC, Red Team, GRC y Zero Trust.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/base4sec.com\/en\/technical-en\/cyber-deception-more-than-a-lure\/2023\/09\/19\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Cyber Deception more than a lure\" \/>\n<meta property=\"og:description\" content=\"An\u00e1lisis t\u00e9cnico y estrategia de ciberseguridad por el equipo de BASE4 Security. Insights sobre CyberSOC, Red Team, GRC y Zero Trust para LATAM y Espa\u00f1a.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/base4sec.com\/en\/technical-en\/cyber-deception-more-than-a-lure\/2023\/09\/19\/\" \/>\n<meta property=\"og:site_name\" content=\"BASE4 Security\" \/>\n<meta property=\"article:published_time\" content=\"2023-09-19T18:12:18+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/base4sec.com\/wp-content\/uploads\/2024\/12\/blog_58.png\" \/>\n\t<meta property=\"og:image:width\" content=\"600\" \/>\n\t<meta property=\"og:image:height\" content=\"600\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Base4 Security Research\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Base4 Security Research\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/cyber-deception-more-than-a-lure\\\/2023\\\/09\\\/19\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/cyber-deception-more-than-a-lure\\\/2023\\\/09\\\/19\\\/\"},\"author\":{\"name\":\"Base4 Security Research\",\"@id\":\"\\\/#\\\/schema\\\/person\\\/5905e7398728c03dbec3772861bd4f99\"},\"headline\":\"Cyber Deception more than a lure\",\"datePublished\":\"2023-09-19T18:12:18+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/cyber-deception-more-than-a-lure\\\/2023\\\/09\\\/19\\\/\"},\"wordCount\":943,\"commentCount\":0,\"publisher\":{\"@id\":\"\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/cyber-deception-more-than-a-lure\\\/2023\\\/09\\\/19\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/base4sec.com\\\/wp-content\\\/uploads\\\/2024\\\/12\\\/blog_58.png\",\"articleSection\":[\"Technical\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/cyber-deception-more-than-a-lure\\\/2023\\\/09\\\/19\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/cyber-deception-more-than-a-lure\\\/2023\\\/09\\\/19\\\/\",\"url\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/cyber-deception-more-than-a-lure\\\/2023\\\/09\\\/19\\\/\",\"name\":\"Cyber Deception more than a lure - BASE4 Security\",\"isPartOf\":{\"@id\":\"\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/cyber-deception-more-than-a-lure\\\/2023\\\/09\\\/19\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/cyber-deception-more-than-a-lure\\\/2023\\\/09\\\/19\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/base4sec.com\\\/wp-content\\\/uploads\\\/2024\\\/12\\\/blog_58.png\",\"datePublished\":\"2023-09-19T18:12:18+00:00\",\"description\":\"BASE4 Security, consultora de ciberseguridad con presencia en Argentina, Chile, Per\u00fa, Colombia, M\u00e9xico y Espa\u00f1a. Servicios de CyberSOC, Red Team, GRC y Zero Trust.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/cyber-deception-more-than-a-lure\\\/2023\\\/09\\\/19\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/cyber-deception-more-than-a-lure\\\/2023\\\/09\\\/19\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/cyber-deception-more-than-a-lure\\\/2023\\\/09\\\/19\\\/#primaryimage\",\"url\":\"https:\\\/\\\/base4sec.com\\\/wp-content\\\/uploads\\\/2024\\\/12\\\/blog_58.png\",\"contentUrl\":\"https:\\\/\\\/base4sec.com\\\/wp-content\\\/uploads\\\/2024\\\/12\\\/blog_58.png\",\"width\":600,\"height\":600,\"caption\":\"POR: Diego Staino Cybersecurity Researcher & Trainer\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/cyber-deception-more-than-a-lure\\\/2023\\\/09\\\/19\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Inicio\",\"item\":\"https:\\\/\\\/base4sec.com\\\/en\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Cyber Deception more than a lure\"}]},{\"@type\":\"WebSite\",\"@id\":\"\\\/#website\",\"url\":\"\\\/\",\"name\":\"BASE4 Security\",\"description\":\"Your cyber ally\",\"publisher\":{\"@id\":\"\\\/#organization\"},\"alternateName\":\"B4\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"\\\/#organization\",\"name\":\"BASE4 Security\",\"url\":\"\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/base4sec.com\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/Logo_policromo_negativo.png\",\"contentUrl\":\"https:\\\/\\\/base4sec.com\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/Logo_policromo_negativo.png\",\"width\":372,\"height\":227,\"caption\":\"BASE4 Security\"},\"image\":{\"@id\":\"\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.linkedin.com\\\/company\\\/base4-security\"],\"description\":\"BASE4 Security es una consultora de ciberseguridad B2B con prop\u00f3sito, fundada en Argentina y con operaciones en Argentina, Chile, Per\u00fa, Colombia, M\u00e9xico y Espa\u00f1a. Ofrece servicios de CyberSOC, Red Team, GRC, Identity Security, Cloud Security y Application Security para empresas en SOLA y NOLA.\",\"email\":\"info@base4sec.com\",\"telephone\":\"02262653623\",\"legalName\":\"BASE4 Security\",\"foundingDate\":\"2008-01-16\",\"numberOfEmployees\":{\"@type\":\"QuantitativeValue\",\"minValue\":\"51\",\"maxValue\":\"200\"}},{\"@type\":\"Person\",\"@id\":\"\\\/#\\\/schema\\\/person\\\/5905e7398728c03dbec3772861bd4f99\",\"name\":\"Base4 Security Research\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/2fd8bd108b76c23a0df95f08c42f3f8653e30a2562d252777bc2a74096d212e4?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/2fd8bd108b76c23a0df95f08c42f3f8653e30a2562d252777bc2a74096d212e4?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/2fd8bd108b76c23a0df95f08c42f3f8653e30a2562d252777bc2a74096d212e4?s=96&d=mm&r=g\",\"caption\":\"Base4 Security Research\"},\"url\":\"https:\\\/\\\/base4sec.com\\\/en\\\/author\\\/cliteplo\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Cyber Deception more than a lure - BASE4 Security","description":"BASE4 Security, consultora de ciberseguridad con presencia en Argentina, Chile, Per\u00fa, Colombia, M\u00e9xico y Espa\u00f1a. Servicios de CyberSOC, Red Team, GRC y Zero Trust.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/base4sec.com\/en\/technical-en\/cyber-deception-more-than-a-lure\/2023\/09\/19\/","og_locale":"en_US","og_type":"article","og_title":"Cyber Deception more than a lure","og_description":"An\u00e1lisis t\u00e9cnico y estrategia de ciberseguridad por el equipo de BASE4 Security. Insights sobre CyberSOC, Red Team, GRC y Zero Trust para LATAM y Espa\u00f1a.","og_url":"https:\/\/base4sec.com\/en\/technical-en\/cyber-deception-more-than-a-lure\/2023\/09\/19\/","og_site_name":"BASE4 Security","article_published_time":"2023-09-19T18:12:18+00:00","og_image":[{"width":600,"height":600,"url":"https:\/\/base4sec.com\/wp-content\/uploads\/2024\/12\/blog_58.png","type":"image\/png"}],"author":"Base4 Security Research","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Base4 Security Research","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/base4sec.com\/en\/technical-en\/cyber-deception-more-than-a-lure\/2023\/09\/19\/#article","isPartOf":{"@id":"https:\/\/base4sec.com\/en\/technical-en\/cyber-deception-more-than-a-lure\/2023\/09\/19\/"},"author":{"name":"Base4 Security Research","@id":"\/#\/schema\/person\/5905e7398728c03dbec3772861bd4f99"},"headline":"Cyber Deception more than a lure","datePublished":"2023-09-19T18:12:18+00:00","mainEntityOfPage":{"@id":"https:\/\/base4sec.com\/en\/technical-en\/cyber-deception-more-than-a-lure\/2023\/09\/19\/"},"wordCount":943,"commentCount":0,"publisher":{"@id":"\/#organization"},"image":{"@id":"https:\/\/base4sec.com\/en\/technical-en\/cyber-deception-more-than-a-lure\/2023\/09\/19\/#primaryimage"},"thumbnailUrl":"https:\/\/base4sec.com\/wp-content\/uploads\/2024\/12\/blog_58.png","articleSection":["Technical"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/base4sec.com\/en\/technical-en\/cyber-deception-more-than-a-lure\/2023\/09\/19\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/base4sec.com\/en\/technical-en\/cyber-deception-more-than-a-lure\/2023\/09\/19\/","url":"https:\/\/base4sec.com\/en\/technical-en\/cyber-deception-more-than-a-lure\/2023\/09\/19\/","name":"Cyber Deception more than a lure - BASE4 Security","isPartOf":{"@id":"\/#website"},"primaryImageOfPage":{"@id":"https:\/\/base4sec.com\/en\/technical-en\/cyber-deception-more-than-a-lure\/2023\/09\/19\/#primaryimage"},"image":{"@id":"https:\/\/base4sec.com\/en\/technical-en\/cyber-deception-more-than-a-lure\/2023\/09\/19\/#primaryimage"},"thumbnailUrl":"https:\/\/base4sec.com\/wp-content\/uploads\/2024\/12\/blog_58.png","datePublished":"2023-09-19T18:12:18+00:00","description":"BASE4 Security, consultora de ciberseguridad con presencia en Argentina, Chile, Per\u00fa, Colombia, M\u00e9xico y Espa\u00f1a. Servicios de CyberSOC, Red Team, GRC y Zero Trust.","breadcrumb":{"@id":"https:\/\/base4sec.com\/en\/technical-en\/cyber-deception-more-than-a-lure\/2023\/09\/19\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/base4sec.com\/en\/technical-en\/cyber-deception-more-than-a-lure\/2023\/09\/19\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/base4sec.com\/en\/technical-en\/cyber-deception-more-than-a-lure\/2023\/09\/19\/#primaryimage","url":"https:\/\/base4sec.com\/wp-content\/uploads\/2024\/12\/blog_58.png","contentUrl":"https:\/\/base4sec.com\/wp-content\/uploads\/2024\/12\/blog_58.png","width":600,"height":600,"caption":"POR: Diego Staino Cybersecurity Researcher & Trainer"},{"@type":"BreadcrumbList","@id":"https:\/\/base4sec.com\/en\/technical-en\/cyber-deception-more-than-a-lure\/2023\/09\/19\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Inicio","item":"https:\/\/base4sec.com\/en\/"},{"@type":"ListItem","position":2,"name":"Cyber Deception more than a lure"}]},{"@type":"WebSite","@id":"\/#website","url":"\/","name":"BASE4 Security","description":"Your cyber ally","publisher":{"@id":"\/#organization"},"alternateName":"B4","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"\/#organization","name":"BASE4 Security","url":"\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"\/#\/schema\/logo\/image\/","url":"https:\/\/base4sec.com\/wp-content\/uploads\/2024\/10\/Logo_policromo_negativo.png","contentUrl":"https:\/\/base4sec.com\/wp-content\/uploads\/2024\/10\/Logo_policromo_negativo.png","width":372,"height":227,"caption":"BASE4 Security"},"image":{"@id":"\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.linkedin.com\/company\/base4-security"],"description":"BASE4 Security es una consultora de ciberseguridad B2B con prop\u00f3sito, fundada en Argentina y con operaciones en Argentina, Chile, Per\u00fa, Colombia, M\u00e9xico y Espa\u00f1a. Ofrece servicios de CyberSOC, Red Team, GRC, Identity Security, Cloud Security y Application Security para empresas en SOLA y NOLA.","email":"info@base4sec.com","telephone":"02262653623","legalName":"BASE4 Security","foundingDate":"2008-01-16","numberOfEmployees":{"@type":"QuantitativeValue","minValue":"51","maxValue":"200"}},{"@type":"Person","@id":"\/#\/schema\/person\/5905e7398728c03dbec3772861bd4f99","name":"Base4 Security Research","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/2fd8bd108b76c23a0df95f08c42f3f8653e30a2562d252777bc2a74096d212e4?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/2fd8bd108b76c23a0df95f08c42f3f8653e30a2562d252777bc2a74096d212e4?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/2fd8bd108b76c23a0df95f08c42f3f8653e30a2562d252777bc2a74096d212e4?s=96&d=mm&r=g","caption":"Base4 Security Research"},"url":"https:\/\/base4sec.com\/en\/author\/cliteplo\/"}]}},"jetpack_featured_media_url":"https:\/\/base4sec.com\/wp-content\/uploads\/2024\/12\/blog_58.png","_links":{"self":[{"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/posts\/5688","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/comments?post=5688"}],"version-history":[{"count":0,"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/posts\/5688\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/media\/5316"}],"wp:attachment":[{"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/media?parent=5688"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/categories?post=5688"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/tags?post=5688"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}