Network November 9, 2017 Don’t Worry About the KRACK Vulnerability — Just Create a Team of Superheroes! 3 min read - There is no silver bullet to thwart the KRACK vulnerability, but a security intelligence platform can help analysts become security superheroes.
Malware November 8, 2017 Overlay RAT Malware Uses AutoIt Scripting to Bypass Antivirus Detection 6 min read - IBM X-Force discovered a new overlay RAT malware that exploits the AutoIt framework to evade antivirus detection while perpetrating bank fraud in Brazil.
CISO November 8, 2017 Don’t Go It Alone: Building Relationships and Sharing Threat Intelligence for the Common Good 2 min read - Companies across all verticals can diminish the impact of widespread cyberthreats by forging collaborative partnerships and sharing threat intelligence.
Incident Response November 2, 2017 Diving Deeper to Understand, Investigate and Mitigate Cyberthreats 2 min read - Investigative analysis tools enable SOC teams to proactively hunt for and mitigate cyberthreats instead of meticulously collecting and curating data.
Malware October 26, 2017 Ursnif Campaign Waves Breaking on Japanese Shores 5 min read - The Ursnif banking Trojan began targeting financial institutions in Japan during Q3 2017 and continues to operate in the region as we enter Q4.
Malware October 25, 2017 Bad Rabbit Ransomware Attacks Highlight Risk of Propagating Malware Outbreaks 5 min read - Companies in Russia and Ukraine suffered a widespread attack known as Bad Rabbit that directed victims to a Dark Web site to pay for their stolen files.
Threat Intelligence October 25, 2017 Threat Intelligence: A Tear-Free Solution to Help SOC Analysts Prepare for the Next WannaCry 2 min read - An effective threat intelligence solution enables analysts to address, track and investigate advanced attacks such as WannaCry ransomware.
October 24, 2017 There’s No Place Like Home: IBM Security Rejoins the IBM Middleware Community 2 min read - We are happy to announce that IBM Security is back and part of our IBM Middleware Community. The Security team will provide peer-to-peer support.
October 19, 2017 Secure Your Endpoints With QRadar Content for Sysmon 3 min read - IBM QRadar Content for Sysmon enables security teams to detect advanced threats such as WannaCry as well as older, tried-and-true endpoint attacks.
Malware October 16, 2017 Diving Into Zberp’s Unconventional Process Injection Technique 8 min read - IBM X-Force Research discovered a new variant of Zberp that evades API threat detection tools using a code injection technique it borrowed from Carberp.