My IBM Log in Subscribe

Security and identity

Abstract representation of Think logo

Jul 02

Cybersecurity

Reproducing a million-dollar bug: WhatsApp CVE-2019-11932 (with AFL & Frida)

Dive into research on a double-free vulnerability, CVE-2019-11932, in an image processing library used by WhatsApp and a GIF-processing vulnerability affecting Android mobile phones. Read now.

Ruben Boonen

IBM X-Force

Threat management Vulnerability assessment Threat intelligence
Discover more in X-Force
17 Apr | Insight
X-Force Threat Intelligence Index 2025 highlights attackers steal, and sell, user identities at scale
Learn insights about the changing threat landscape and how organizations can transform cyber defense into cyber resilience. Learn More
22 Apr | X-Force
Powering up: Abusing power apps to compromise on-prem servers
Joshua Magri
25 Mar | News
IBM X-Force discovers new Sheriff Backdoor used to target Ukraine
Golo MĂĽhr
28 Apr | | News
IBM X-Force Red releases m-Ray, an open-source mainframe vulnerability scanner
Kyri Lea
14 Apr | | Insight
IBM X-Force Threat Analysis: Hive0148 observed targeting Mexico and Costa Rica
Joe Fasulo, Melissa Frydrych-Dean, Kevin Henson
08 Apr | | Insight
RemoteMonologue: Weaponizing DCOM for NTLM authentication coercions
Andrew Oliveau
30 Apr | | Insight
Fileless lateral movement with trapped COM objects
Dylan Tran, Jimmy Bayne
29 Apr | | Insight
Bypassing Windows Defender Application Control with Loki C2
Bobby Cooke

Videos

Learn the fundamentals and trending topics in security from our explainer videos

 

 View the cloud security playlist
AI in Cybersecurity

Learn how AI acts as a force multiplier to help you address security threats more effectively.
What is SOAR?

In this video, Jeff “The Security Guy” explains the need to have a strategy AND the right tools for handling security incidents, including so-called “black swan” events.
Phishing Explained

Security expert Jeff Crume explains the attackers’ strategy, whether it’s phishing, spearfishing or whaling – and how to avoid falling for their traps.
The anatomy of an att&ck

Understand the MITRE ATT&CK in terms of “tactics, techniques and procedures (TTPs)”, and “people, process and technology (PPTs)”, and how to defend against attacks.

Think newsletter subscription

Get weekly AI, cloud, security and sustainability industry news, events and insights.

Your subscription will be delivered in English. You will find an unsubscribe link in every newsletter. You can manage your subscriptions or unsubscribe here. Refer to our IBM Privacy Statement for more information.

Products Consulting services Industries Case studies Financing Research LinkedIn X Instagram YouTube Podcasts Business partners Documentation Events Subscription center Support TechXchange community Overview Careers Investor relations Leadership Newsroom Security, privacy and trust United States — English Contact IBM Privacy Terms of use Accessibility