X-Force July 5, 2016 BadTunnel: Bad News? 3 min read - The recently discovered BadTunnel could mean bad news for Microsoft Windows users — that is, unless they move to patch their systems immediately.
Software Vulnerabilities June 13, 2014 The Pitfalls of Reusable Code: OpenSSL 4 min read - What happens when a widely-used common library, such as OpenSSL, has vulnerabilities? Thoughts on how incidents such as Heartbleed can occur.
Software Vulnerabilities January 13, 2014 Six Month Old Vulnerability Exploit Attempt 2 min read - The IBM X-Force Threat Analysis Service (XFTAS) reports on vulnerabilities that need to be brought to the attention of our customers. Such was the case in June of 2013. We found a report on a Plesk Control Panel vulnerability (CVE-2013-4878)…
Threat Intelligence November 7, 2013 SOC Blog: "Fred-cot" attack targeting web servers attempting to create botnet 4 min read - As a new addition to our securityintelligence.com site we will begin to more regularly feature threat analysis from IBM’s Managed Security Services organization. This team operates a 24/7 Security Operations Center (SOC) on behalf of thousands of clients globally. “Fred-Cot”…