Exclusive

Intelligence & Analytics February 21, 2023

Backdoor Deployment and Ransomware: Top Threats Identified in X-Force Threat Intelligence Index 2023

Discover how threat actors are waging attacks and how to proactively protect your organization with top findings from the 2023 X-Force Threat Intelligence Index.

Container Drift: Where Age isn’t Just a Number

3 min read - Container orchestration frameworks like Kubernetes have brought about untold technological advances over the past decade. However, they have also enabled new attack vectors for bad actors to leverage. Before safely deploying an application, you must answer the following questions: How…

Software Vulnerabilities March 21, 2023

Patch Tuesday -> Exploit Wednesday: Pwning Windows Ancillary Function Driver for WinSock (afd.sys) in 24 Hours

12 min read - ‘Patch Tuesday, Exploit Wednesday’ is an old hacker adage that refers to the weaponization of vulnerabilities the day after monthly security patches become publicly available. As security improves and exploit mitigations become more sophisticated, the amount of research and development…

Risk Management March 21, 2023

OneNote, Many Problems? The New Phishing Framework

4 min read - There are plenty of phish in the digital sea, and attackers are constantly looking for new bait that helps them bypass security perimeters and land in user inboxes. Their newest hook? OneNote documents. First noticed in December 2022, this phishing…

Timeline

State and Local Government Cyberattacks Timeline

State and local governments face malicious actors who target personal information and key services, endangering both citizens and critical infrastructure. Explore this timeline for a sense of the evolving landscape, attack patterns and prevention best practices.

EXPLORE THE TIMELINE

When the Absence of Noise Becomes Signal: Defensive Considerations for Lazarus FudModule

7 min read - In February 2023, X-Force posted a blog entitled “Direct Kernel Object Manipulation (DKOM) Attacks on ETW Providers” that details the capabilities of a sample attributed to the Lazarus group leveraged to impair visibility of the malware’s operations. This blog will…

Risk Management March 20, 2023

The Role of Finance Departments in Cybersecurity

3 min read - Consumers are becoming more aware of the data companies collect about them, and place high importance on data security and privacy. Though consumers aren’t aware of every data breach, they are justifiably concerned about what happens to the data companies…

Security Services March 17, 2023

The One Place IT Budget Cuts Can’t Touch: Cybersecurity

4 min read - If IT spending is slowing, will business leaders follow a similar approach for cybersecurity budgets? Probably not. Gartner predicts that end-user spending on both security technology and services will see an annual growth rate of 11% over the next four…

2022 Industry Threat Recap: Manufacturing

4 min read - It seems like yesterday that industries were fumbling to understand the threats posed by post-pandemic economic and technological changes. While every disruption provides opportunities for positive change, it’s hard to ignore the impact that global supply chains, rising labor costs,…

Risk Management March 16, 2023

What Does a Network Security Engineer Do?

4 min read - Cybersecurity is complex. The digital transformation, remote work and the ever-evolving threat landscape require different tools and different skill sets. Systems must be in place to protect endpoints, identities and a borderless network perimeter. The job role responsible for handling…

Cloud Security March 15, 2023

The Importance of Modern-Day Data Security Platforms

4 min read - Data is the backbone of businesses and companies everywhere. Data can range from intellectual property to critical business plans to personal health information or even money itself. At the end of the day, businesses are looking to grow revenue, innovate,…

Latest Podcast

Season 3 |Episode 2

The Threat Landscape 2023: Top Targets, Top Attack Types, Top Geographies

Dive into the biggest highlights from this year's X-Force Threat Intelligence Index with report author Michael Worley, a strategic cyber threat analyst at IBM Security. Listen now on Into the Breach.

Now playing

18:09

ALL Episodes

Featured by topic

Analysis and insights from hundreds of the brightest minds in the cybersecurity industry to help you prove compliance, grow business and stop threats.

Cybersecurity News By Topic By Industry Exclusive Series Threat Research Podcast Events Contact About Us

Security Intelligence

{{title}}

{{title}}

{{title}}

{{title}}

Topics

Backdoor Deployment and Ransomware: Top Threats Identified in X-Force Threat Intelligence Index 2023

Container Drift: Where Age isn’t Just a Number

Patch Tuesday -> Exploit Wednesday: Pwning Windows Ancillary Function Driver for WinSock (afd.sys) in 24 Hours

OneNote, Many Problems? The New Phishing Framework

State and Local Government Cyberattacks Timeline

When the Absence of Noise Becomes Signal: Defensive Considerations for Lazarus FudModule

The Role of Finance Departments in Cybersecurity

The One Place IT Budget Cuts Can’t Touch: Cybersecurity

2022 Industry Threat Recap: Manufacturing

What Does a Network Security Engineer Do?

The Importance of Modern-Day Data Security Platforms

{{title}}

{{title}}

{{title}}

{{title}}

Backdoor Deployment and Ransomware: Top Threats Identified in X-Force Threat Intelligence Index 2023

Container Drift: Where Age isn’t Just a Number

Patch Tuesday -> Exploit Wednesday: Pwning Windows Ancillary Function Driver for WinSock (afd.sys) in 24 Hours

OneNote, Many Problems? The New Phishing Framework

Hackers are Increasingly Targeting Auto Dealers

LastPass Breaches Cast Doubt on Password Manager Safety

Good Guys Decrypt Ransomware Targeting Charitable Groups

State and Local Government Cyberattacks Timeline

When the Absence of Noise Becomes Signal: Defensive Considerations for Lazarus FudModule

The Role of Finance Departments in Cybersecurity

The One Place IT Budget Cuts Can’t Touch: Cybersecurity

2022 Industry Threat Recap: Manufacturing

What Does a Network Security Engineer Do?

The Importance of Modern-Day Data Security Platforms