My IBM

Security and identity

Jul 02

Cybersecurity

Reproducing a million-dollar bug: WhatsApp CVE-2019-11932 (with AFL & Frida)

Dive into research on a double-free vulnerability, CVE-2019-11932, in an image processing library used by WhatsApp and a GIF-processing vulnerability affecting Android mobile phones. Read now.

Ruben Boonen

17 Apr | Insight

X-Force Threat Intelligence Index 2025 highlights attackers steal, and sell, user identities at scale

Learn insights about the changing threat landscape and how organizations can transform cyber defense into cyber resilience. Learn More

22 Apr | X-Force

Powering up: Abusing power apps to compromise on-prem servers

Joshua Magri

25 Mar | News

IBM X-Force discovers new Sheriff Backdoor used to target Ukraine

Golo Mühr

28 Apr | | News

IBM X-Force Red releases m-Ray, an open-source mainframe vulnerability scanner

Kyri Lea

14 Apr | | Insight

IBM X-Force Threat Analysis: Hive0148 observed targeting Mexico and Costa Rica

Joe Fasulo, Melissa Frydrych-Dean, Kevin Henson

08 Apr | | Insight

RemoteMonologue: Weaponizing DCOM for NTLM authentication coercions

Andrew Oliveau

30 Apr | | Insight

Fileless lateral movement with trapped COM objects

Dylan Tran, Jimmy Bayne

29 Apr | | Insight

Bypassing Windows Defender Application Control with Loki C2

Bobby Cooke

Videos

Learn the fundamentals and trending topics in security from our explainer videos

View the cloud security playlist

AI in Cybersecurity

Learn how AI acts as a force multiplier to help you address security threats more effectively.

What is SOAR?

In this video, Jeff “The Security Guy” explains the need to have a strategy AND the right tools for handling security incidents, including so-called “black swan” events.

Phishing Explained

Security expert Jeff Crume explains the attackers’ strategy, whether it’s phishing, spearfishing or whaling – and how to avoid falling for their traps.

The anatomy of an att&ck

Understand the MITRE ATT&CK in terms of “tactics, techniques and procedures (TTPs)”, and “people, process and technology (PPTs)”, and how to defend against attacks.

What Is SIEM?

Sort through alerts with Jaqueline Lehmann using a SIEM system to correlate data from multiple sources and find accurate, high-fidelity alerts.

Social Engineering - How Bad Guys Hack Users

Watch how Jeff Crume, IBM Distinguished Engineer, describes the many methods that bad guy/hackers use that you should know about so you can protect yourself.

The power of AI: Security

Security AI and automation technologies enable organizations to stay ahead of cyber threats through faster incident detection and response.

Business email

Your subscription will be delivered in English. You will find an unsubscribe link in every newsletter. You can manage your subscriptions or unsubscribe here. Refer to our IBM Privacy Statement for more information.

Security and identity

Reproducing a million-dollar bug: WhatsApp CVE-2019-11932 (with AFL & Frida)

IBM X-Force

Videos

Think newsletter subscription