Articles - Security Intelligence

Featured

Mobile Security January 10, 2023

A View Into Web(View) Attacks in Android

4 min read - James Kilner contributed to the technical editing of this blog. Nethanella Messer, Segev Fogel, Or Ben Nun and Liran Tiebloom contributed to the blog. Although in the PC realm it is common to see financial malware used in web attacks…

Intelligence & Analytics December 13, 2022

Cybersecurity Trends: IBM’s Predictions for 2023

4 min read - As with many other aspects of life and business, 2022 held fewer overall surprises in cybersecurity than in recent years — thank goodness. Instead, many trends brewing over the past few years began to take clearer form. Some were unexpected,…

Intelligence & Analytics December 13, 2022

Cybersecurity Trends: IBM’s Predictions for 2023

CISO February 3, 2023

Bridging the 3.4 Million Workforce Gap in Cybersecurity

4 min read - As new cybersecurity threats continue to loom, the industry is running short of workers to face them. The 2022 (ISC)2 Cybersecurity Workforce Study identified a 3.4 million worldwide cybersecurity worker gap; the total existing workforce is estimated at 4.7 million.…

Endpoint February 2, 2023

The Evolution of Antivirus Software to Face Modern Threats

5 min read - Over the years, endpoint security has evolved from primitive antivirus software to more sophisticated next-generation platforms employing advanced technology and better endpoint detection and response. Because of the increased threat that modern cyberattacks pose, experts are exploring more elegant ways…

Threat Hunting February 2, 2023

How Do Threat Hunters Keep Organizations Safe?

3 min read - Neil Wyler started his job amid an ongoing cyberattack. As a threat hunter, he helped his client discover that millions of records had been stolen over four months. Even though his client used sophisticated tools, its threat-hunting technology did not…

Zero Trust February 1, 2023

Contain Breaches and Gain Visibility With Microsegmentation

4 min read - Organizations must grapple with challenges from various market forces. Digital transformation, cloud adoption, hybrid work environments and geopolitical and economic challenges all have a part to play. These forces have especially manifested in more significant security threats to expanding IT…

CISO January 31, 2023

CEO, CIO or CFO: Who Should Your CISO Report To?

4 min read - As we move deeper into a digitally dependent future, the growing concern of data breaches and other cyber threats has led to the rise of the Chief Information Security Officer (CISO). This position is essential in almost every company that…

Risk Management January 30, 2023

How the Silk Road Affair Changed Law Enforcement

The Silk Road was the first modern dark web marketplace, an online place for anonymously buying and selling illegal products and services using Bitcoin. Ross Ulbricht created The Silk Road in 2011 and operated it until 2013 when the FBI shut it down. Its creator was eventually arrested and sentenced to life in prison. But in a plot twist right out of a spy novel, a cyber attacker stole thousands of bitcoins from Silk Road and hid them away. It…

Artificial Intelligence January 27, 2023

Data Privacy: How the Growing Field of Regulations Impacts Businesses

The proposed rules over artificial intelligence (AI) in the European Union (EU) are a harbinger of things to come. Data privacy laws are becoming more complex and growing in number and relevance. So, businesses that seek to become — and stay — compliant must find a solution that can do more than just respond to current challenges. Take a look at upcoming trends when it comes to data privacy regulations and how to follow them. Today's AI Solutions On April…

Zero Trust January 27, 2023

Why Zero Trust Works When Everything Else Doesn’t

The zero trust security model is proving to be one of the most effective cybersecurity approaches ever conceived. Zero trust — also called zero trust architecture (ZTA), zero trust network architecture (ZTNA) and perimeter-less security — takes a "default deny" security posture. All people and devices must prove explicit permission to use each network resource each time they use that resource. Using microsegmentation and least privileged access principles, zero trust not only prevents breaches but also stymies lateral movement should a breach…

Incident Response January 27, 2023

5 Golden Rules of Threat Hunting

When a breach is uncovered, the operational cadence includes threat detection, quarantine and termination. While all stages can occur within the first hour of discovery, in some cases, that's already too late.Security operations center (SOC) teams monitor and hunt new threats continuously. To ward off the most advanced threats, security teams proactively hunt for ones that evade the dashboards of their security solutions.However, advanced threat actors have learned to blend in with their target's environment, remaining unnoticed for prolonged periods. Based…

Incident Response January 27, 2023

5 Golden Rules of Threat Hunting

6 min read - When a breach is uncovered, the operational cadence includes threat detection, quarantine and termination. While all stages can occur within the first hour of discovery, in some cases, that’s already too late. Security operations center (SOC) teams monitor and hunt…

Mobile Security January 26, 2023

Third-Party App Stores Could Be a Red Flag for iOS Security

4 min read - Even Apple can’t escape change forever. The famously restrictive company will allow third-party app stores for iOS devices, along with allowing users to “sideload” software directly. Spurring the move is the European Union’s (EU) Digital Markets Act (DMA), which looks…

Data Protection January 26, 2023

Defensive Driving: The Need for EV Cybersecurity Roadmaps

4 min read - As the U.S. looks to bolster electric vehicle (EV) adoption, a new challenge is on the horizon: cybersecurity. Given the interconnected nature of these vehicles and their reliance on local power grids, they’re not just an alternative option for getting…

Government January 25, 2023

Who Will Be the Next National Cyber Director?

4 min read - After Congress approved his nomination in 2021, Chris Inglis served as the first-ever National Cyber Director for the White House. Now, he plans to retire. So who’s next? As of this writing in January of 2023, there remains uncertainty around…

Application Security January 25, 2023

Kronos Malware Reemerges with Increased Functionality

6 min read - The Evolution of Kronos Malware The Kronos malware is believed to have originated from the leaked source code of the Zeus malware, which was sold on the Russian underground in 2011. Kronos continued to evolve and a new variant of…

Risk Management January 24, 2023

Too Much Caffeine? Phishing-as-a-Service Makes Us Jittery

2 min read - Recently, investigators at Mandiant discovered a new software platform with an intuitive interface. The service has tools to orchestrate and automate core campaign elements. Some of the platform’s features enable self-service customization and campaign tracking. Sounds like a typical Software-as-a-Service…

CISO January 24, 2023

Everyone Wants to Build a Cyber Range: Should You?

7 min read - In the last few years, IBM X-Force has seen an unprecedented increase in requests to build cyber ranges. By cyber ranges, we mean facilities or online spaces that enable team training and exercises of cyberattack responses. Companies understand the need…

Identity & Access January 24, 2023

An IBM Hacker Breaks Down High-Profile Attacks

5 min read - On September 19, 2022, an 18-year-old cyberattacker known as “teapotuberhacker” (aka TeaPot) allegedly breached the Slack messages of game developer Rockstar Games. Using this access, they pilfered over 90 videos of the upcoming Grand Theft Auto VI game. They then…

Risk Management January 23, 2023

Log4j Forever Changed What (Some) Cyber Pros Think About OSS

4 min read - In late 2021, the Apache Software Foundation disclosed a vulnerability that set off a panic across the global tech industry. The bug, known as Log4Shell, was found in the ubiquitous open-source logging library Log4j, and it exposed a huge swath…

Failed to load data

Analysis and insights from hundreds of the brightest minds in the cybersecurity industry to help you prove compliance, grow business and stop threats.

Cybersecurity News By Topic By Industry Exclusive Series Threat Research Podcast Events Contact About Us

Security Intelligence

{{title}}

{{title}}

{{title}}

{{title}}

Topics

A View Into Web(View) Attacks in Android

Cybersecurity Trends: IBM’s Predictions for 2023

Cybersecurity Trends: IBM’s Predictions for 2023

Bridging the 3.4 Million Workforce Gap in Cybersecurity

The Evolution of Antivirus Software to Face Modern Threats

How Do Threat Hunters Keep Organizations Safe?

Contain Breaches and Gain Visibility With Microsegmentation

CEO, CIO or CFO: Who Should Your CISO Report To?

How the Silk Road Affair Changed Law Enforcement

Data Privacy: How the Growing Field of Regulations Impacts Businesses

Why Zero Trust Works When Everything Else Doesn’t

5 Golden Rules of Threat Hunting

5 Golden Rules of Threat Hunting

Third-Party App Stores Could Be a Red Flag for iOS Security

Defensive Driving: The Need for EV Cybersecurity Roadmaps

Who Will Be the Next National Cyber Director?

Kronos Malware Reemerges with Increased Functionality

Too Much Caffeine? Phishing-as-a-Service Makes Us Jittery

Everyone Wants to Build a Cyber Range: Should You?

An IBM Hacker Breaks Down High-Profile Attacks

Log4j Forever Changed What (Some) Cyber Pros Think About OSS

{{{title}}}