68 Posts

Limor Kessem

Executive Security Advisor, IBM

Limor Kessem is one of the top cyber intelligence experts at IBM Security. She is a seasoned security advocate, public speaker, and a regular blogger on the cutting-edge IBM Security Intelligence blog. Limor comes to IBM from organizations like RSA Security, where she spent 5 years as part of the RSA research labs and drove the FraudAction blog on RSA's Speaking of Security. She also served as the Marketing Director of Big Data analytics startup ThetaRay, where she created the company's cybersecurity thought leadership. Limor is considered an authority on emerging cybercrime threats. She participated as a highly appreciated speaker on live InfraGard New York webcasts (an FBI collaboration), spoke in RSA events worldwide, conducts live webinars on all things fraud and cybercrime, and writes a large variety of threat intelligence  publications. With her unique position at the intersection of multiple research teams at IBM, and her fingers on the pulse of current day threats, Limor covers the full spectrum of trends affecting consumers, corporations, and the industry as a whole. On the social side, Limor tweets security items as @iCyberFighter and is an avid Brazilian Jiu Jitsu fighter.

Written By Limor Kessem

An Aggressive Launch: TrickBot Trojan Rises With Redirection Attacks in the UK

IBM X-Force researchers reported that TrickBot is fully operational and already capable of deploying two of the most advanced browser manipulation methods.

GM Bot: Alive and Upgraded, Now on Android M

Researchers discovered a new version of banking Trojan GM Bot that enables cybercriminals to bypass security features included with Android Lollipop.

New, Live, Interactive Phishing Attacks Emerge in Brazil

The newest threat on Brazil's thriving online fraud scene is interactive phishing, which allows an attacker to steal a victim's personal data in real time.

Meanwhile in Britain, Qadars v3 Hardens Evasion, Targets 18 UK Banks

After a brief period of inactivity while Qadars targeted banks in other regions, it seems the U.K. is back on the malware's operators' radar.

Hey Dridex, Tu Runā Latviski?

IBM X-Force Research reported that Dridex recently conducted attacks in unlikely areas, such as Latvia, Lithuania, Estonia and Ukraine.

Bilal Bot: That Time a Malware Developer Asked Me to Correct a Security Blog

An anonymous user who claimed to be the author of Bilal Bot reached out to IBM via a Russian domain to set the record straight about the malware.

Ramnit Rears Its Ugly Head Again, Targets Major UK Banks

After an eight-month period of dormancy, the Ramnit Trojan has resurfaced to attack the customers of six major banks in the U.K.

GozNym’s Euro Trip: Launching Redirection Attacks in Germany

GozNym continued its trip around Europe by launching redirection attacks against 13 German banks. The volume of these attacks has spiked in recent months.

Brazil Can’t Catch a Break: After Panda Comes the Sphinx

IBM X-Force researchers uncovered the first Zeus Sphinx attacks in Brazil, which target online banking and payment services in Brazil's top banks.

Panda Is One Hungry Bear! A Heavyweight Banking Trojan Rolls Into Brazil

A new Zeus Trojan variant called Panda Banker that started targeting banks in Europe and North America early this year has spread to Brazil.

Co-Written By Limor Kessem

Brazilian Malware Never Sleeps: Meet EmbusteBot

IBM Research — Haifa Labs detected yet another malware campaign, dubbed EmbusteBot, designed to target dozens of financial institutions in Brazil.

GootKit Developers Dress It Up With Web Traffic Proxy

X-Force researchers revealed the cybergang behind Gootkit had upgraded the banking Trojan with new network interception and certificate bypass methods.

The Full Shamoon: How the Devastating Malware Was Inserted Into Networks

X-Force IRIS researchers found that the Shamoon malware operators relied on weaponized documents that leveraged PowerShell to infiltrate targeted networks.

Anatomy of an hVNC Attack

Cybercriminals who rely on remote control tactics to commit financial fraud may use hidden virtual network computing (hVNC) modules to cover their tracks.

Client Maximus: New Remote Overlay Malware Highlights Rising Malcode Sophistication in Brazil

IBM X-Force researchers discovered a new malware called Client Maximus that contains advanced code written specifically to attack banks in Brazil.

Two Heads Are Better Than One: Going Under the Hood to Analyze GozNym

IBM X-Force researchers recognized that the GozNym banking malware leverages features from two types of malware to make it double the threat.

Gozi Banking Trojan Upgrades Build to Inject Into Windows 10 Edge Browser

The developers of the Gozi banking Trojan have built some improvements into the malware that now allow it to attack Windows 10 operating systems.

Dyre Summer Renovation: Randomized Config File Names Keep Antivirus Engines Guessing

Developers of the Dyre malware are keeping a close eye on security, making several changes to the file configuration to avoid detection.

Tsukuba: Banking Trojan Phishing in Japanese Waters

IBM Security Trusteer researchers recently discovered a new financial malware dubbed Tsukuba, which targets Japanese online banking users.