Exclusive

Intelligence & Analytics February 21, 2023

Backdoor Deployment and Ransomware: Top Threats Identified in X-Force Threat Intelligence Index 2023

Discover how threat actors are waging attacks and how to proactively protect your organization with top findings from the 2023 X-Force Threat Intelligence Index.

The Role of Human Resources in Cybersecurity

3 min read - The human resources (HR) department is an integral part of an organization. They work with all departments with a wider reach than even IT. As a highly visible department, HR can support and improve an organization’s security posture through employee…

Risk Management March 24, 2023

New Attack Targets Online Customer Service Channels

4 min read - An unknown attacker group is targeting customer service agents at gambling and gaming companies with a new malware effort. Known as IceBreaker, the code is capable of stealing passwords and cookies, exfiltrating files, taking screenshots and running custom VBS scripts.…

Data Protection March 23, 2023

Cybersecurity 101: What is Attack Surface Management?

3 min read - There were over 4,100 publicly disclosed data breaches in 2022, exposing about 22 billion records. Criminals can use stolen data for identity theft, financial fraud or to launch ransomware attacks. While these threats loom large on the horizon, attack surface…

Timeline

State and Local Government Cyberattacks Timeline

State and local governments face malicious actors who target personal information and key services, endangering both citizens and critical infrastructure. Explore this timeline for a sense of the evolving landscape, attack patterns and prevention best practices.

EXPLORE THE TIMELINE

Six Ways to Secure Your Organization on a Smaller Budget

4 min read - My LinkedIn feed has been filled with connections announcing they have been laid off and are looking for work. While it seems that no industry has been spared from uncertainty, my feed suggests tech has been hit the hardest. Headlines…

Risk Management March 22, 2023

Container Drift: Where Age isn’t Just a Number

3 min read - Container orchestration frameworks like Kubernetes have brought about untold technological advances over the past decade. However, they have also enabled new attack vectors for bad actors to leverage. Before safely deploying an application, you must answer the following questions: How…

Application Security March 21, 2023

Patch Tuesday -> Exploit Wednesday: Pwning Windows Ancillary Function Driver for WinSock (afd.sys) in 24 Hours

12 min read - ‘Patch Tuesday, Exploit Wednesday’ is an old hacker adage that refers to the weaponization of vulnerabilities the day after monthly security patches become publicly available. As security improves and exploit mitigations become more sophisticated, the amount of research and development…

OneNote, Many Problems? The New Phishing Framework

4 min read - There are plenty of phish in the digital sea, and attackers are constantly looking for new bait that helps them bypass security perimeters and land in user inboxes. Their newest hook? OneNote documents. First noticed in December 2022, this phishing…

Endpoint March 20, 2023

When the Absence of Noise Becomes Signal: Defensive Considerations for Lazarus FudModule

7 min read - In February 2023, X-Force posted a blog entitled “Direct Kernel Object Manipulation (DKOM) Attacks on ETW Providers” that details the capabilities of a sample attributed to the Lazarus group leveraged to impair visibility of the malware’s operations. This blog will…

Risk Management March 20, 2023

The Role of Finance Departments in Cybersecurity

3 min read - Consumers are becoming more aware of the data companies collect about them, and place high importance on data security and privacy. Though consumers aren’t aware of every data breach, they are justifiably concerned about what happens to the data companies…

Latest Podcast

Season 3 |Episode 3

Operational Technology: The evolving threats that might shift regulatory policy

Operational Technology attacks are evolving. Here’s what’s shifting and how policy might change as a result. Join Security Research Evangelist Roya Gordon on this episode of Into the Breach.

Now playing

31:39

ALL Episodes

Featured by topic

Analysis and insights from hundreds of the brightest minds in the cybersecurity industry to help you prove compliance, grow business and stop threats.

Cybersecurity News By Topic By Industry Exclusive Series Threat Research Podcast Events Contact About Us

Security Intelligence

{{title}}

{{title}}

{{title}}

{{title}}

Topics

Backdoor Deployment and Ransomware: Top Threats Identified in X-Force Threat Intelligence Index 2023

The Role of Human Resources in Cybersecurity

New Attack Targets Online Customer Service Channels

Cybersecurity 101: What is Attack Surface Management?

State and Local Government Cyberattacks Timeline

Six Ways to Secure Your Organization on a Smaller Budget

Container Drift: Where Age isn’t Just a Number

Patch Tuesday -> Exploit Wednesday: Pwning Windows Ancillary Function Driver for WinSock (afd.sys) in 24 Hours

OneNote, Many Problems? The New Phishing Framework

When the Absence of Noise Becomes Signal: Defensive Considerations for Lazarus FudModule

The Role of Finance Departments in Cybersecurity

{{title}}

{{title}}

{{title}}

{{title}}

Backdoor Deployment and Ransomware: Top Threats Identified in X-Force Threat Intelligence Index 2023

The Role of Human Resources in Cybersecurity

New Attack Targets Online Customer Service Channels

Cybersecurity 101: What is Attack Surface Management?

Hackers are Increasingly Targeting Auto Dealers

LastPass Breaches Cast Doubt on Password Manager Safety

Good Guys Decrypt Ransomware Targeting Charitable Groups

State and Local Government Cyberattacks Timeline

Six Ways to Secure Your Organization on a Smaller Budget

Container Drift: Where Age isn’t Just a Number

Patch Tuesday -> Exploit Wednesday: Pwning Windows Ancillary Function Driver for WinSock (afd.sys) in 24 Hours

OneNote, Many Problems? The New Phishing Framework

When the Absence of Noise Becomes Signal: Defensive Considerations for Lazarus FudModule

The Role of Finance Departments in Cybersecurity