Cyber-intelligence
Our approach to Cyber-intelligence is based on proactivity and anticipation, identifying trends, threats, or patterns of suspicious activity. The application of knowledge and technology enables quick detection of breaches or attacks on assets, achieving the required levels of protection.

Vulnerabilities – RedTeam
We have internal teams (RedTeam) to detect vulnerabilities that may exist in technological assets, using monitoring tools that perform a continuous search of networks and systems and simulating cyber-attacks.
We have a vulnerability discovery program, managed by selected industry-leading companies, to receive contributions from cybersecurity experts (ethical hackers) worldwide.
Vulnerability detection includes products and services that are released to the market. In case a vulnerability is found after release, we do our best to fix it as soon as possible.
We ask the research community to give us the opportunity to fix vulnerabilities they find before we publish them, just as we commit to do so if we discover them in third-party products. This collaboration helps protect users’ interests in using up-to-date and secure products.

We are committed to responsible disclosure of vulnerabilities discovered in third party products or services by reporting them directly to the affected product vendors, to a national CERT or through any private service that will also report them privately to the vendor.
Contact us to report vulnerabilities .
Incidents – CSIRT
We have the technical and human capabilities required to respond effectively and promptly to any breach or incident, with the aim of minimizing attacks and their impact, through a network of Incident Response Centers (CSIRTs). The CSIRTs operate in a coordinated manner, establishing relationships with other national and international CSIRT/CERTs across both the public and private sectors. Annual cyber‑exercises are conducted to train CSIRT teams in all countries in the management of potential incidents.
Based on effective communication of incidents between CSIRTs, the objective is to minimize their impact and restore availability as quickly as possible. Root cause analysis enables us to learn from incidents and implement appropriate measures to prevent their recurrence.

We maintain public mailboxes, both at a global and local level, accessible to any user and designed to report any vulnerability or threat that could affect Telefónica’s technological infrastructure.


