Forensics - Security Intelligence

A man writing code on a desktop computer: PowerShell attack

article

An Increase in PowerShell Attacks: Observations From IBM X-Force IRIS

Since the open source release of the PowerShell framework in 2016, IBM X-Force Incident Response and Intelligence Services (IRIS) has identified an upward trend in malicious PowerShell use.

October 12, 2018 | By Camille Singleton

article

Illustration of data filtering into a computer: DNS analytics

article

How to Use DNS Analytics to Find the Compromised Domain in a Billion DNS Queries

Using unique methods of analyzing DNS data, advanced DNS analytics enables security teams to quickly and proactively find and eliminate potential threats.

October 11, 2018 | By Sridhar Muppidi

article

article

Diving Deeper to Understand, Investigate and Mitigate Cyberthreats

Investigative analysis tools enable SOC teams to proactively hunt for and mitigate cyberthreats instead of meticulously collecting and curating data.

November 2, 2017 | By Jamie Caffrey

article

Crime scene tape in front of police officers.

article

Smart Forensics for the Internet of Things (IoT)

The expanding Internet of Things brings new attack vectors, and cybersecurity experts will need new methods of incident response and forensics to keep up.

March 22, 2017 | By Usama Salama

article

Security teams can make their incident forensics run as smoothly as possible with security intelligence solutions. These tools ensure the detection, investigation and remediation of problems occurs as quickly as possible, allowing organization to recover.

article

The Myth of One-Hour Forensics

Real-life incident forensics isn't like what's portrayed in Hollywood. But with the right security intelligence, you can still solve the mystery quickly.

September 8, 2015 | By Pamela Cobb

article

Forensics investigations will take on a new look with the help of Hviz graphs and data analysis. This concept combines humans' ability to identify visual patterns with a computer's ability to sort through millions of data points at an unprecedented rate.

article

HTTP(S) Visualization With Hviz

Hviz has the potential to help cybersecurity professionals streamline investigations of Web traffic to identify malware and similar malicious activity.

May 26, 2015 | By Brad Harris

article

A computer forensic laboratory should be constructed with certain considerations in mind to make the space as safe and efficient as possible.

article

Is Your Computer Forensic Laboratory Designed Appropriately?

A computer forensic laboratory is indispensable in supporting the investigative process, but to function efficiently, it must be designed properly.

May 6, 2015 | By Brian Evans

article

Cyber forensics is the investigative analysis of rich content — full packet data, documents and other artifacts — to reveal the presence, nature, impact and extent of a cyberthreat. It cannot remain a niche capability as cybersecurity breaches increase.

article

Demystifying the Dark Art of Cyber Forensics

As cybersecurity takes center stage as a result of a growing number of destructive data breaches, cyber forensics cannot remain a niche capability.

January 29, 2015 | By Vijay Dheap

article

With many organizations assuming they have already been breached, information technology researchers can use tools such as QRadar Incident Forensics to look into network breaches and make sure they are rapidly terminated to protect the system.

article

What Are the Best Network Forensics and Data Capture Tools?

An analysis of the top data capture and network forensics tools across six common criteria. See which incident forensics solution scored the best overall.

August 20, 2014 | By Jay Bretzmann

article

Attackers Compromise Admin Account to Infect Manufacturing Company With BitPaymer Ransomware

Spear Phishing Report Card: Perfect Scores in School Security Pen Testing

Google 2FA Approach Turns Android Smartphones Into Security Keys

April Scams May Ruin Plans: Threat Actors Ramp Up for Tax Scam Season

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

How a Cunning Remote Overlay Malware Met Its Match

The US Is Slow to Adopt EHRs, But That Might Actually Be a Good Thing for Healthcare Security

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

Credential Dumping Campaign Hits Multinational Corporations

Cybercriminals Spoof Major Accounting and Payroll Firms in Tax Season Malware Campaigns

Buffer Overflow Vulnerability in TP-Link Routers Can Allow Remote Attackers to Take Control

Podcast: Muscle Memory and Cyber Fitness Training

Podcast: Zero Trust and the Evolving Role of Identity and Access Management

Podcast: Digital Identity Trust, Part 3 — Powering Digital Growth With Digital Identity Trust

Podcast: Monitoring National Cybersecurity Trends With Former NSA Deputy Director Bill Crowell

Webinar: MacOS Management Made Easy with MaaS360

Webinar: Encryption is the Fastest Way to Protect Data

Webinar: Under the Radar: Live Webinar and Demo

Webinar: Facilitating Secure Hybrid Cloud Adoption with Guardium

Tag: Forensics

An Increase in PowerShell Attacks: Observations From IBM X-Force IRIS

How to Use DNS Analytics to Find the Compromised Domain in a Billion DNS Queries

Diving Deeper to Understand, Investigate and Mitigate Cyberthreats

Smart Forensics for the Internet of Things (IoT)

The Myth of One-Hour Forensics

HTTP(S) Visualization With Hviz

Is Your Computer Forensic Laboratory Designed Appropriately?

Demystifying the Dark Art of Cyber Forensics

What Are the Best Network Forensics and Data Capture Tools?