Malware Analysis - Security Intelligence

Security professional reading about the latest malware threats: malware

news

Web Servers Used to Host 10 Malware Families Distributed via Phishing Emails

Digital attackers used more than a dozen web servers to host 10 malware families and distributed those threats using phishing emails.

April 9, 2019 | By David Bisson

news

Security professionals analyzing a banking Trojan.

article

IcedID Banking Trojan Spruces Up Injection Tactics to Add Stealth

IBM X-Force analyzed modifications made to IcedID that help the banking Trojan act more stealthily on infected devices.

April 4, 2019 | By Nir Somech

article

Security professional monitoring organized cybercrime trends.

article

The Business of Organized Cybercrime: Rising Intergang Collaboration in 2018

In 2018, IBM X-Force researchers observed organized cybercrime groups collaborating, rather than competing over turf or even attacking each other, for the first time.

March 20, 2019 | By Limor Kessem

article

Professional working on a laptop in the office targeted with Ursnif banking malware

news

Threat Actor Targets Japanese Users With New Ursnif Variant

Security researchers discovered an attack campaign targeting Japanese users with a new variant of Ursnif banking malware.

March 13, 2019 | By David Bisson

news

Man entering credit card information on a laptop: IcedID

article

IcedID Operators Using ATSEngine Injection Panel to Hit E-Commerce Sites

The X-Force research team investigated the IcedID Trojan's two-step injection attack that enables it to steal access credentials and payment card data from e-commerce customers in North America.

February 6, 2019 | By Itzik Chimino

article

Two security professionals working on code in the office: Ursnif

news

Ursnif, Emotet, Dridex and BitPaymer Malware Families Team Up to Wreak Havoc

Researchers discovered a link between four malware families — Ursnif, Emotet, Dridex and BitPaymer — that suggests threat actors may be combining efforts to develop more sophisticated attack vectors.

January 4, 2019 | By Douglas Bonderud

news

Woman working on laptop in a coffee shop: lcg kit

news

LCG Kit Document Builder Now Using Microsoft Word Macros to Install Malware Payloads

A weaponized document builder service known as LCG Kit added the ability to use Microsoft Word macros to load the necessary shellcode for installing malware.

December 20, 2018 | By David Bisson

news

Woman using her laptop and mobile device in a public space: financial cybercrime

article

The Simpler the Better? Looking Deeper Into the Malware Used in Brazilian Financial Cybercrime

The majority of financial cybercrime risks can be mitigated with continued user education and by placing the right controls on user devices to help protect against malware.

December 10, 2018 | By Chen Nahman

article

A businessman using a laptop: remote access Trojan

news

TA505 Threat Group Distributes Previously Undocumented tRat Remote Access Trojan

Researchers observed the TA505 threat group spreading a previously undocumented remote access Trojan (RAT) called tRaT.

November 20, 2018 | By David Bisson

news

Illustration of artificial intelligence on a mobile device

article

Artificial Intelligence, Real Concerns: Hype, Hope and the Hard Truth About AI

With a corporate culture that supports transparency and human agency, it's possible to maximize the existing benefits of artificial intelligence (AI) while laying the groundwork for the future of AI.

October 30, 2018 | By Douglas Bonderud

article

Many of Baltimore’s City Services Still Offline Two Weeks After Ransomware Attack

Hundreds of Thousands of Users Targeted Daily With Would-Be WannaCry Imitators

Phishing Campaign Delivers Multi-Feature, Open-Source Babylon RAT

More Than 100 US Businesses Affected by Ryuk Ransomware Since August 2018, Finds FBI

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

GozNym Closure Comes in the Shape of a Europol and DOJ Arrest Operation

The Decline of Hacktivism: Attacks Drop 95 Percent Since 2015

Published Exploits for Accessing SAP Systems Put Security Teams on Alert

Penetration Testing Versus Red Teaming: Clearing the Confusion

Podcast: Lessons from a Gray Beard: Transitioning From the Military to Cybersecurity

Podcast: Foundations for a Winning Operational Technology (OT) Security Strategy

Podcast: ‘You Can Never Have Too Much Encryption’

Podcast: Automating Cyber Resilience Best Practices With Dr. Larry Ponemon

Webinar: Guardium Tech Talk: An Integrated Approach to Data Risk Management

Webinar: The Debrief: Using Tools and Methods From the Intelligence Community to Stop Threats to Your Organization

Webinar: Operational Technology Security in the Age of Digital Transformation

Webinar: Leaders & Laggards: The Latest Findings from the Ponemon Institute’s Study on the Cyber Resilient Organization

Tag: Malware Analysis

Web Servers Used to Host 10 Malware Families Distributed via Phishing Emails

IcedID Banking Trojan Spruces Up Injection Tactics to Add Stealth

The Business of Organized Cybercrime: Rising Intergang Collaboration in 2018

Threat Actor Targets Japanese Users With New Ursnif Variant

IcedID Operators Using ATSEngine Injection Panel to Hit E-Commerce Sites

Ursnif, Emotet, Dridex and BitPaymer Malware Families Team Up to Wreak Havoc

LCG Kit Document Builder Now Using Microsoft Word Macros to Install Malware Payloads

The Simpler the Better? Looking Deeper Into the Malware Used in Brazilian Financial Cybercrime

TA505 Threat Group Distributes Previously Undocumented tRat Remote Access Trojan

Artificial Intelligence, Real Concerns: Hype, Hope and the Hard Truth About AI