39 Posts

Michelle Alvarez

Threat Researcher and Editor, IBM Managed Security Services

Michelle Alvarez is a Threat Researcher and Editor for IBM's Managed Security Services; she brings more than 10 years of industry experience to her role. In this role she focuses communications efforts around threat research and mitigation. Michelle joined IBM through the Internet Security Services (ISS) acquisition, where she served as an Analyst on the X-Force Vulnerability Database Team.

Written By Michelle Alvarez

Uptick in Wire Transfer Scam: I BEC Your Pardon?

A global wire transfer scam expertly targets businesses and their email accounts. How can your enterprise protect against this type of fraudulent event?

Got Linux? BillGates Botnet Activity on the Rise

While it may be just one form of malware currently plaguing Linux systems, the BillGates botnet has recently increased its activity.

Study: Basic Needs Critical Infrastructure Sectors Account for 8 Percent of All Incidents in 2014

According to a recently released IBM study, the basic needs critical infrastructure sectors accounted for 8 percent of all security incidents in 2014.

Pressing Your Luck With WordPress? A Look at CMS Security Risks

A new paper from IBM discusses the security of content management systems (CMS) such as WordPress and how attackers are targeting them.

The Deep Web: What’s Lurking in the Underbelly of the Internet?

Organizations should be aware of how the Deep Web works in order to make sure employees aren't accessing it and sensitive information isn't on it.

Vulnerabilities Detected in Employee-Installed Dating Applications

Mobile Dating Apps Can Place Confidential Information at Risk As more people utilize mobile dating applications to find companionship, the apps have become increasingly attractive to potential attackers. This study explores mobile security...

Identifying the Insider Threat: The Benign and the Malignant

Whether a disgruntled employee intentionally steals data or an unknowing co-worker accidentally releases information, the insider threat is real.

Revelations in Data Protection in the Aftermath of Shellshock

Sometimes less is more. But when it comes to data protection, more is definitely more, as proven by new research into the recent Shellshock vulnerability.

Are You Digging Deep? When Antivirus Is Not Enough

Sometimes, antivirus solutions aren't enough to detect potential issues within your system. Be sure you or your security provider are digging deeper.

Co-Written By Michelle Alvarez

Apache Struts 2: A Zero-Day Quick Draw

It took fraudsters less than 24 hours after the disclosure of a previously unknown Apache Struts 2 vulnerability to develop a Python script to exploit it.

Mirai IoT Botnet: Mining for Bitcoins?

Just in time for IoT Day, the Mirai botnet is launching attacks with a new trick up its sleeve: a built-in bitcoin mining component.