42 Posts

Michelle Alvarez

Threat Researcher and Editor, IBM Managed Security Services

Michelle Alvarez is a Threat Researcher and Editor for IBM's Managed Security Services; she brings more than 10 years of industry experience to her role. In this role she focuses communications efforts around threat research and mitigation. Michelle joined IBM through the Internet Security Services (ISS) acquisition, where she served as an Analyst on the X-Force Vulnerability Database Team.

Written By Michelle Alvarez

Don’t Just Put Out the Zero-Day Fire — Get Rid of the Fuel

The best way to remediate zero-day threats is to focus on proactively assessing and patching the vulnerabilities that facilitate them.

Spotlight on Energy and Utilities Sector: Attacks Targeting ICS Systems Projected to Increase

According to IBM X-Force data, cybercriminals have been targeting industrial control systems in the energy and utilities sector at an increasing rate.

The Educator’s Back-to-School Cybersecurity Checklist: Make Mitigating Command Injection a Priority

To protect students, parents and teachers from data theft, academic institutions must adopt comprehensive strategies to mitigate command injection attacks.

Information and Communication Technology (ICT) Industry: Second-Most Attacked Sector in 2016

The information and communication technology (ICT) industry suffered the second-most attacks out of all sectors monitored by IBM X-Force in 2016.

Manufacturing Security Incidents: Forty Percent Higher Than Cross-Industry Average in 2016

In manufacturing, security incidents occurred at a rate 40 percent higher than the average across all other industries in 2016, according to X-Force data.

Mark Your Calendar: IBM X-Force Tracks Cyberattacks by Month

According to IBM X-Force research, 19 percent of cyberattacks observed over the past two years occurred during the month of December.

A Magnet for Cybercrime: Financial Services Sector

According to the 2017 IBM X-Force Threat Intelligence Index, cybercriminals targeted the financial services sector more than any other industry in 2016.

2016: The Year of the Mega Breach

The latest edition of the IBM X-Force Threat Intelligence Index detailed how companies were affected by data breaches during the "year of the mega breach."

Disposing of Your Device: Don’t Throw the Data Out With the Old PC

Disposing of your device securely means wiping old data, deauthorizing account access and finding an ecologically sound home for the old device.

Health Care Data at Growing Risk From Ransomware, Insiders and Third-Party Breaches

A new report based on IBM MSS data revealed that ransomware, insider threats and third-party breaches plagued health care organizations in 2016.

Co-Written By Michelle Alvarez

Downward Trend in Publicly Available Exploit Code? Don’t Ease Up on Patch Management Just Yet

IBM X-Force reported a downward trend in publicly available exploit code, but security teams must still prioritize vulnerability and patch management.

Apache Struts 2: A Zero-Day Quick Draw

It took fraudsters less than 24 hours after the disclosure of a previously unknown Apache Struts 2 vulnerability to develop a Python script to exploit it.

Mirai IoT Botnet: Mining for Bitcoins?

Just in time for IoT Day, the Mirai botnet is launching attacks with a new trick up its sleeve: a built-in bitcoin mining component.