Light Dark
June 2, 2015 By Pamela Cobb < 1 min read
Advanced Threats
Data Protection
X-Force

The rise of social media, cloud, mobility and big data makes insider threats harder to identify, and provide more ways to pass protected information. The average organization monitored by IBM Security Services experienced approximately 81 million security events in 2014, with 55% of attacks carried out by those who had insider access to organizations’ systems. Historically, the term “insider threat” meant that disgruntled or negligent employees were inflicting harm to the company’s assets, either physical or electronic. Today many different classifications have been identified, from inadvertent insiders to quasi-insiders like 3rd party contractors.

Key findings of the IBM X-Force Threat Intelligence Quarterly – 2Q 2015:

  • Social engineering has turned an annoyance like spam into a legitimate attack vector, as for-profit operators create and sell spam campaigns to trick inadvertent insiders to open an attachment or click on a link.
  • Through rigorous practices such as monitoring and maintenance of privileged access, enterprises can better manage and monitor users and networks for both security and compliance.
  • In the event of an incident, a thorough understanding of what transpired is essential to preventing it from happening again; learn more about network forensics and how it can benefit the investigation process.

Download the complete IBM X-Force Threat Intelligence Quarterly – 2Q 2015

Pamela Cobb
Market Segment Manager, IBM X-Force and Security Intelligence

More from Advanced Threats
May 24, 2024

Phishing kit trends and the top 10 spoofed brands of 2023

4 min read -  The 2024 IBM X-Force Threat Intelligence Index reported that phishing was one of the top initial access vectors observed last year, accounting for 30% of incidents. To carry out their phishing campaigns, attackers often use phishing kits: a collection of tools, resources and scripts that are designed and assembled to ease deployment. Each phishing kit deployment corresponds to a single phishing attack, and a kit could be redeployed many times during a phishing campaign. IBM X-Force has analyzed thousands of…

May 16, 2024

Grandoreiro banking trojan unleashed: X-Force observing emerging global campaigns

16 min read - Since March 2024, IBM X-Force has been tracking several large-scale phishing campaigns distributing the Grandoreiro banking trojan, which is likely operated as a Malware-as-a-Service (MaaS). Analysis of the malware revealed major updates within the string decryption and domain generating algorithm (DGA), as well as the ability to use Microsoft Outlook clients on infected hosts to spread further phishing emails. The latest malware variant also specifically targets over 1500 global banks, enabling attackers to perform banking fraud in over 60 countries…

May 2, 2024

A spotlight on Akira ransomware from X-Force Incident Response and Threat Intelligence

7 min read - This article was made possible thanks to contributions from Aaron Gdanski.IBM X-Force Incident Response and Threat Intelligence teams have investigated several Akira ransomware attacks since this threat actor group emerged in March 2023. This blog will share X-Force’s unique perspective on Akira gained while observing the threat actors behind this ransomware, including commands used to deploy the ransomware, active exploitation of CVE-2023-20269 and analysis of the ransomware binary.The Akira ransomware group has gained notoriety in the current cybersecurity landscape, underscored…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2024 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature
Press play to continue listening
00:00 00:00