Threat Monitoring - Security Intelligence

A team of security professionals discusses threat modeling in the office.

article

What Is Threat Modeling and How Does It Impact Application Security?

Beyond the obvious benefit of proactively identifying application security incidents, threat modeling gives security leaders opportunities to educate developers and foster a DevSecOps culture.

June 25, 2019 | By Brandon Jeanmarie

article

Cloud security professionals performing attacker reconnaissance.

article

Why Doxing Is the Dr. Jekyll and Mr. Hyde of Cloud Security

It's time for cloud security teams to turn the tables on malicious actors and use doxing — in the form of attacker reconnaissance — to uncover vulnerabilities before they turn into full-blown threats.

June 25, 2019 | By Abby Ross

article

A security professional analyzes malicious code: botnet

news

Outlaw Threat Group Using Botnet to Distribute Monero Miner, Perl-Based Backdoor

The Outlaw threat group is using a botnet to distribute a Monero cryptocurrency miner and a Perl-based backdoor component.

June 18, 2019 | By David Bisson

news

A programmer analyzes the code from a targeted attack campaign

news

Threat Actors Use Targeted Attack Tools to Distribute Cryptocurrency Miners, Ransomware

Threat actors are using targeted attack tools to distribute typical malware, such as cryptocurrency miners and ransomware.

June 17, 2019 | By David Bisson

news

Man using a desktop computer: macro malware

article

How to Fight Back Against Macro Malware

Per X-Force IRIS, at least 22 percent of reported campaigns in April 2019 delivered macro malware. What methods can defenders leverage to help detect malicious macro activity?

May 20, 2019 | By Megan Roddie

article

Man working on a laptop in the office: TA505

news

New TA505 Phishing Campaign Using LOLBins to Distribute Backdoor Malware

A threat actor known as TA505 recently launched a phishing campaign that uses living-of-the-land binaries (LOLBins) to distribute a new backdoor malware.

April 29, 2019 | By David Bisson

news

Woman sending an email on a laptop: emotet

news

Emotet Variants Hijack Existing Email Conversations to Distribute Malicious Links

Researchers observed variants of the Emotet Trojan injecting themselves into existing email conversations as a means of distributing malicious links.

April 16, 2019 | By David Bisson

news

Security professional analyzing mobile malware threats

article

What Happens When Malware Sneaks Into Reputable Hardware, Applications and App Stores?

To avoid malware, always get hardware and software from authorized and reputable sources and vendors, right? But what happens when those same sources actually contain or deliver malicious payloads?

April 12, 2019 | By Mike Elgan

article

Two programmers working on security controls to detect black market tls/ssl certificates

article

Dark Web TLS/SSL Certificates Highlight Need for Shift to Zero Trust Security

Some of the latest website security threats originate from thriving dark web marketplaces for TLS/SSL certificates, which often come packaged with other cybercrime services.

April 11, 2019 | By Koen Van Impe

article

Woman searching for jobs on laptop infected with More_eggs malware

news

Threat Actor Using Fake LinkedIn Job Offers to Deliver More_eggs Backdoor

Security researchers discovered that a threat actor is targeting LinkedIn users with fake job offers to deliver the More_eggs backdoor.

February 27, 2019 | By David Bisson

news

Fake Android Apps Steal Cryptocurrency Credentials With 2FA Bypass Technique

TCP SACK Panic Flaw Could Compromise Production Linux Machines

Free Decryption Tool Enables Victims of GandCrab Ransomware to Recover Their Files

Outlaw Threat Group Using Botnet to Distribute Monero Miner, Perl-Based Backdoor

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

IoMT Security: A Comprehensive Approach to Mitigate Risk and Secure Connected Devices

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

Critical RCE Vulnerability in TP-Link Wi-Fi Extenders Can Grant Attackers Remote Control

One Big Lesson From the Cyber Range to Help Solve Confirmation Bias

Observations of ITG07 Cyber Operations

Getting Quantum Ready and What This Means for Cryptography

Podcast: Reducing Third-Party Risk

Podcast: Development Agility and Open-Source Vulnerability Prioritization

Podcast: Lateral Movement: Combating High-Risk, Low-Noise Threats

Podcast: Travel Security: Why Data Safety Doesn’t Get a Day Off

Webinar: How to Outmatch Data Security Challenges with Cost-Effective, Practical Strategies

Webinar: Total Recon: See You Online, Richter

Digital Identity Trust at Cyber Week 2019 – Tel Aviv, Israel

Webinar: IBM i2 User Group Webinar: Advance Your Existing i2 Capabilities

Tag: Threat Monitoring

What Is Threat Modeling and How Does It Impact Application Security?

Why Doxing Is the Dr. Jekyll and Mr. Hyde of Cloud Security

Outlaw Threat Group Using Botnet to Distribute Monero Miner, Perl-Based Backdoor

Threat Actors Use Targeted Attack Tools to Distribute Cryptocurrency Miners, Ransomware

How to Fight Back Against Macro Malware

New TA505 Phishing Campaign Using LOLBins to Distribute Backdoor Malware

Emotet Variants Hijack Existing Email Conversations to Distribute Malicious Links

What Happens When Malware Sneaks Into Reputable Hardware, Applications and App Stores?

Dark Web TLS/SSL Certificates Highlight Need for Shift to Zero Trust Security

Threat Actor Using Fake LinkedIn Job Offers to Deliver More_eggs Backdoor