IBM X-Force Exchange - Security Intelligence

Security professionals working in an office: HawkEye

article

HawkEye Malware Operators Renew Attacks on Business Users

IBM X-Force researchers report an increase in HawkEye v9 keylogger infection campaigns targeting businesses around the world.

May 27, 2019 | By Limor Kessem

article

Security professional investigating a credential dumping campaign.

article

Credential Dumping Campaign Hits Multinational Corporations

X-Force researchers observed attackers targeting multinational corporations in various sectors using malicious scripts to automate attacks on misconfigured servers.

April 9, 2019 | By Thanassis Diogos

article

Woman doing her taxes on a laptop: cybercriminals

article

Cybercriminals Spoof Major Accounting and Payroll Firms in Tax Season Malware Campaigns

IBM X-Force researchers observed cybercriminals engaging in three tax-themed malware campaigns.

April 8, 2019 | By John Zorabedian

article

article

Buffer Overflow Vulnerability in TP-Link Routers Can Allow Remote Attackers to Take Control

IBM X-Force found a zero-day buffer overflow vulnerability in one of the most common routers on the market that could let malicious third parties take control of the device from a remote location.

April 8, 2019 | By Grzegorz Wypych

article

news

Brand New Bag? TrickBot Malware Adds POS Data Collection Module

Security researchers observed TrickBot malware that utilizes a new capability: point-of-sale (POS) data collection.

November 30, 2018 | By Douglas Bonderud

news

Threat sharing breaks down cybersecurity silos

article

Busting Cybersecurity Silos

To break down cybersecurity silos, professionals must work together to share security information and build collaborative solutions to address the evolving cybersecurity threat landscape.

November 12, 2018 | By Sridhar Muppidi

article

Two IT security professionals following incident response procedures.

article

IBM Security Named a Leader in IDC Incident Response MarketScape Report

This year, IDC recognized IBM X-Force Incident Response and Intelligence Services (IRIS) for effectively streamlining incident response (IR) for customers around the globe.

October 22, 2018 | By Wangui McKelvey

article

Illustration of several envelopes floating above a laptop screen: Necurs

article

The Many Faces of Necurs: How the Botnet Spewed Millions of Spam Emails for Cyber Extortion

IBM X-Force researchers observed the Necurs botnet spewing millions of spam emails from more than 30,000 malicious IPs to extort bitcoin from victims who may or may not have viewed adult content.

October 10, 2018 | By Dirk Harz

article

Illustration of a businesswoman running along a broken chain: Drupalgeddon

article

Threat Actors Prey on Drupalgeddon Vulnerability to Mass-Compromise Websites and Underlying Servers

X-Force observed attackers using known Drupal vulnerabilities, including Drupalgeddon, to target websites and the underlying infrastructure that hosts them, leveraging Shellbot to open backdoors.

October 10, 2018 | By Noah Adjonyo

article

Hotel concierges helping customers and answering phones: malicious emails

news

Malicious Emails Use New AdvisorsBot to Compromise Telecommunications and Hospitality Companies

A new downloader dubbed AdvisorsBot has been observed sending highly targeted malicious emails to telecommunications and hospitality companies.

September 4, 2018 | By Douglas Bonderud

news

SWEED Threat Actor Uses Typosquatting, UAC Bypasses to Distribute Agent Tesla

UK Government Urges Organizations to Defend Against DNS Hijacking

Telegram, WhatsApp Vulnerability Exposes Media Files to Tampering

Digital Attackers Now Using 16Shop Phishing Kit to Target Amazon Users

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

CISO of Major UK Retailer Weighs in on Enterprise IoT Security

IoMT Security: A Comprehensive Approach to Mitigate Risk and Secure Connected Devices

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Threat Intelligence Is the SOC’s Road Map to DNS Security

Taking Over the Overlay: Reconstructing a Brazilian Remote Access Trojan (RAT)

Taking Over the Overlay: What Triggers the AVLay Remote Access Trojan (RAT)?

Taking Over the Overlay: Reverse Engineering a Brazilian Remote Access Trojan (RAT)

Podcast: IT’s Eyes and Ears — The Evolving Security Operations Center (SOC)

Podcast: Reducing Third-Party Risk

Podcast: Development Agility and Open-Source Vulnerability Prioritization

Podcast: Lateral Movement: Combating High-Risk, Low-Noise Threats

Webinar: Protecting Office365 with IBM Cloud Identity and MaaS360

Webinar: Wandera & IBM Introduce the Next Level of Access Management

Webinar: How to Outmatch Data Security Challenges with Cost-Effective, Practical Strategies

Webinar: Total Recon: See You Online, Richter

Tag: IBM X-Force Exchange

HawkEye Malware Operators Renew Attacks on Business Users

Credential Dumping Campaign Hits Multinational Corporations

Cybercriminals Spoof Major Accounting and Payroll Firms in Tax Season Malware Campaigns

Buffer Overflow Vulnerability in TP-Link Routers Can Allow Remote Attackers to Take Control

Brand New Bag? TrickBot Malware Adds POS Data Collection Module

Busting Cybersecurity Silos

IBM Security Named a Leader in IDC Incident Response MarketScape Report

The Many Faces of Necurs: How the Botnet Spewed Millions of Spam Emails for Cyber Extortion

Threat Actors Prey on Drupalgeddon Vulnerability to Mass-Compromise Websites and Underlying Servers

Malicious Emails Use New AdvisorsBot to Compromise Telecommunications and Hospitality Companies