Forensics - Security Intelligence

A man writing code on a desktop computer: PowerShell attack

article

An Increase in PowerShell Attacks: Observations From IBM X-Force IRIS

Since the open source release of the PowerShell framework in 2016, IBM X-Force Incident Response and Intelligence Services (IRIS) has identified an upward trend in malicious PowerShell use.

October 12, 2018 | By Camille Singleton

article

Illustration of data filtering into a computer: DNS analytics

article

How to Use DNS Analytics to Find the Compromised Domain in a Billion DNS Queries

Using unique methods of analyzing DNS data, advanced DNS analytics enables security teams to quickly and proactively find and eliminate potential threats.

October 11, 2018 | By Sridhar Muppidi

article

article

Diving Deeper to Understand, Investigate and Mitigate Cyberthreats

Investigative analysis tools enable SOC teams to proactively hunt for and mitigate cyberthreats instead of meticulously collecting and curating data.

November 2, 2017 | By Jamie Caffrey

article

Crime scene tape in front of police officers.

article

Smart Forensics for the Internet of Things (IoT)

The expanding Internet of Things brings new attack vectors, and cybersecurity experts will need new methods of incident response and forensics to keep up.

March 22, 2017 | By Usama Salama

article

Security teams can make their incident forensics run as smoothly as possible with security intelligence solutions. These tools ensure the detection, investigation and remediation of problems occurs as quickly as possible, allowing organization to recover.

article

The Myth of One-Hour Forensics

Real-life incident forensics isn't like what's portrayed in Hollywood. But with the right security intelligence, you can still solve the mystery quickly.

September 8, 2015 | By Pamela Cobb

article

Forensics investigations will take on a new look with the help of Hviz graphs and data analysis. This concept combines humans' ability to identify visual patterns with a computer's ability to sort through millions of data points at an unprecedented rate.

article

HTTP(S) Visualization With Hviz

Hviz has the potential to help cybersecurity professionals streamline investigations of Web traffic to identify malware and similar malicious activity.

May 26, 2015 | By Brad Harris

article

A computer forensic laboratory should be constructed with certain considerations in mind to make the space as safe and efficient as possible.

article

Is Your Computer Forensic Laboratory Designed Appropriately?

A computer forensic laboratory is indispensable in supporting the investigative process, but to function efficiently, it must be designed properly.

May 6, 2015 | By Brian Evans

article

Cyber forensics is the investigative analysis of rich content — full packet data, documents and other artifacts — to reveal the presence, nature, impact and extent of a cyberthreat. It cannot remain a niche capability as cybersecurity breaches increase.

article

Demystifying the Dark Art of Cyber Forensics

As cybersecurity takes center stage as a result of a growing number of destructive data breaches, cyber forensics cannot remain a niche capability.

January 29, 2015 | By Vijay Dheap

article

With many organizations assuming they have already been breached, information technology researchers can use tools such as QRadar Incident Forensics to look into network breaches and make sure they are rapidly terminated to protect the system.

article

What Are the Best Network Forensics and Data Capture Tools?

An analysis of the top data capture and network forensics tools across six common criteria. See which incident forensics solution scored the best overall.

August 20, 2014 | By Jay Bretzmann

article

Threat Actors Use Targeted Attack Tools to Distribute Cryptocurrency Miners, Ransomware

XENOTIME Threat Group Now Targeting Electric Utility Organizations

Fraudsters Abuse Smartphone Google Calendar Feature to Push Through Scam Offers

Latest Mirai Malware Variant Contains 18 Exploits, Focuses on Embedded IoT Devices

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

IoMT Security: A Comprehensive Approach to Mitigate Risk and Secure Connected Devices

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

Critical RCE Vulnerability in TP-Link Wi-Fi Extenders Can Grant Attackers Remote Control

One Big Lesson From the Cyber Range to Help Solve Confirmation Bias

Observations of ITG07 Cyber Operations

Getting Quantum Ready and What This Means for Cryptography

Podcast: Development Agility and Open-Source Vulnerability Prioritization

Podcast: Lateral Movement: Combating High-Risk, Low-Noise Threats

Podcast: Travel Security: Why Data Safety Doesn’t Get a Day Off

Podcast: Lessons from a Gray Beard: Transitioning From the Military to Cybersecurity

Webinar: Under the Radar: IBM QRadar Demo Series

Webinar: Appliance Networking Topics

Webinar: zSecure Real Time Feeds: Alert vs. Audit

Webinar: zSecure Real Time Feeds: Alert vs. Audit

Tag: Forensics

An Increase in PowerShell Attacks: Observations From IBM X-Force IRIS

How to Use DNS Analytics to Find the Compromised Domain in a Billion DNS Queries

Diving Deeper to Understand, Investigate and Mitigate Cyberthreats

Smart Forensics for the Internet of Things (IoT)

The Myth of One-Hour Forensics

HTTP(S) Visualization With Hviz

Is Your Computer Forensic Laboratory Designed Appropriately?

Demystifying the Dark Art of Cyber Forensics

What Are the Best Network Forensics and Data Capture Tools?