IBM X-Force Exchange - Security Intelligence

Security professional investigating a credential dumping campaign.

article

Credential Dumping Campaign Hits Multinational Corporations

X-Force researchers observed attackers targeting multinational corporations in various sectors using malicious scripts to automate attacks on misconfigured servers.

April 9, 2019 | By Thanassis Diogos

article

Woman doing her taxes on a laptop: cybercriminals

article

Cybercriminals Spoof Major Accounting and Payroll Firms in Tax Season Malware Campaigns

IBM X-Force researchers observed cybercriminals engaging in three tax-themed malware campaigns.

April 8, 2019 | By John Zorabedian

article

article

Buffer Overflow Vulnerability in TP-Link Routers Can Allow Remote Attackers to Take Control

IBM X-Force found a zero-day buffer overflow vulnerability in one of the most common routers on the market that could let malicious third parties take control of the device from a remote location.

April 8, 2019 | By Grzegorz Wypych

article

news

Brand New Bag? TrickBot Malware Adds POS Data Collection Module

Security researchers observed TrickBot malware that utilizes a new capability: point-of-sale (POS) data collection.

November 30, 2018 | By Douglas Bonderud

news

Threat sharing breaks down cybersecurity silos

article

Busting Cybersecurity Silos

To break down cybersecurity silos, professionals must work together to share security information and build collaborative solutions to address the evolving cybersecurity threat landscape.

November 12, 2018 | By Sridhar Muppidi

article

Two IT security professionals following incident response procedures.

article

IBM Security Named a Leader in IDC Incident Response MarketScape Report

This year, IDC recognized IBM X-Force Incident Response and Intelligence Services (IRIS) for effectively streamlining incident response (IR) for customers around the globe.

October 22, 2018 | By Wangui McKelvey

article

Illustration of several envelopes floating above a laptop screen: Necurs

article

The Many Faces of Necurs: How the Botnet Spewed Millions of Spam Emails for Cyber Extortion

IBM X-Force researchers observed the Necurs botnet spewing millions of spam emails from more than 30,000 malicious IPs to extort bitcoin from victims who may or may not have viewed adult content.

October 10, 2018 | By Dirk Harz

article

Illustration of a businesswoman running along a broken chain: Drupalgeddon

article

Threat Actors Prey on Drupalgeddon Vulnerability to Mass-Compromise Websites and Underlying Servers

X-Force observed attackers using known Drupal vulnerabilities, including Drupalgeddon, to target websites and the underlying infrastructure that hosts them, leveraging Shellbot to open backdoors.

October 10, 2018 | By Noah Adjonyo

article

Hotel concierges helping customers and answering phones: malicious emails

news

Malicious Emails Use New AdvisorsBot to Compromise Telecommunications and Hospitality Companies

A new downloader dubbed AdvisorsBot has been observed sending highly targeted malicious emails to telecommunications and hospitality companies.

September 4, 2018 | By Douglas Bonderud

news

A person placing a nametag on a light blue shirt: threat intelligence

article

What’s In a (Threat Intelligence) Name?

A lot of things in the threat intelligence world have multiple names, and these aliases often complicate the process of researching and dealing with security threats.

August 22, 2018 | By Doug Franklin

article

Many of Baltimore’s City Services Still Offline Two Weeks After Ransomware Attack

Hundreds of Thousands of Users Targeted Daily With Would-Be WannaCry Imitators

Phishing Campaign Delivers Multi-Feature, Open-Source Babylon RAT

More Than 100 US Businesses Affected by Ryuk Ransomware Since August 2018, Finds FBI

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

GozNym Closure Comes in the Shape of a Europol and DOJ Arrest Operation

The Decline of Hacktivism: Attacks Drop 95 Percent Since 2015

Published Exploits for Accessing SAP Systems Put Security Teams on Alert

Penetration Testing Versus Red Teaming: Clearing the Confusion

Podcast: Lessons from a Gray Beard: Transitioning From the Military to Cybersecurity

Podcast: Foundations for a Winning Operational Technology (OT) Security Strategy

Podcast: ‘You Can Never Have Too Much Encryption’

Podcast: Automating Cyber Resilience Best Practices With Dr. Larry Ponemon

Webinar: Guardium Tech Talk: An Integrated Approach to Data Risk Management

Webinar: The Debrief: Using Tools and Methods From the Intelligence Community to Stop Threats to Your Organization

Webinar: Operational Technology Security in the Age of Digital Transformation

Webinar: Leaders & Laggards: The Latest Findings from the Ponemon Institute’s Study on the Cyber Resilient Organization

Tag: IBM X-Force Exchange

Credential Dumping Campaign Hits Multinational Corporations

Cybercriminals Spoof Major Accounting and Payroll Firms in Tax Season Malware Campaigns

Buffer Overflow Vulnerability in TP-Link Routers Can Allow Remote Attackers to Take Control

Brand New Bag? TrickBot Malware Adds POS Data Collection Module

Busting Cybersecurity Silos

IBM Security Named a Leader in IDC Incident Response MarketScape Report

The Many Faces of Necurs: How the Botnet Spewed Millions of Spam Emails for Cyber Extortion

Threat Actors Prey on Drupalgeddon Vulnerability to Mass-Compromise Websites and Underlying Servers

Malicious Emails Use New AdvisorsBot to Compromise Telecommunications and Hospitality Companies

What’s In a (Threat Intelligence) Name?