Virtual Machine (VM) - Security Intelligence

Man working on a computer looking distraught: VFEmail

news

Catastrophe, Not Compromise: VFEmail Attack Destroys Decades of Data

The email provider VFEmail suffered a "catastrophic" hack that destroyed the company's primary and backup data servers in the U.S.

February 14, 2019 | By Douglas Bonderud

news

With Windows Server 2016, Microsoft adopted the concept of least privilege with its PowerShell scripting environment. Known as Just Enough Access (JEA), this approach can be broken and still needs to be monitored and regulated like normal admin access.

article

New Security Enhancements for Microsoft Windows Server 2016

Windows Server 2016 includes enhanced security features, such as VM encryption capabilities and a minimal Nano Server to reduce the attack surface.

October 27, 2016 | By David Strom

article

Unveiling the secrets that malware developers fight to keep is one of the most effective ways to develop defenses against their nefarious devices. Security researchers can overcome URLZone's most recent anti-research techniques and install it on a VM.

article

Fighting Fire With WinDBG: Breaking URLZone’s Anti-VM Armor

URLZone, a sophisticated banking Trojan that first emerged in 2009, keeps its inner workings under wraps with extensive anti-research features.

September 2, 2016 | By Lior Keshet

article

The GootKit banking Trojan uses many advanced evasion techniques to avoid the prying eyes of security researchers. It is well-versed in identifying virtual machines and finding the core processes of a victim's computer to infect it.

article

GootKit: Bobbing and Weaving to Avoid Prying Eyes

IBM X-Force researchers recently studied the GootKit banking Trojan — and the many ways it effectively evades detection and maintains persistence.

July 8, 2016 | By Limor Kessem

article

Enterprises seeking more flexibility and security may want to consider software-defined networking and virtual networks. These new technologies enable organizations to be more adaptable and to save money, but it's not an easy path.

article

Security and the Virtual Network: Part I

Virtual networks are becoming a popular choice for enterprises due to their flexibility, but it's not simple to select the right option.

March 15, 2016 | By David Strom

article

There are plenty of opportunities associated with blockchain technologies, and the second generation of Ethereum is available to help developers take advantage. The possibilities tied to this new tool are almost endless but will require lots of learning.

article

Ethereum: A Second-Generation Blockchain for the IoT

Ethereum is an updated blockchain technology that could be well-suited for the IoT. But how does it work, and is it a capable solution?

December 3, 2015 | By Larry Loeb

article

Side-channel attacks can be an effective, albeit time-consuming, way of entering private networks or data stores via virtual machines. This article explains how S$A attacks work and what can be done to protect and detect this attacks.

article

Side-Channel Attacks Against Multicore Processors in Cross-VM Scenarios: Part III

In the final installment of this series, we focus on S$A attacks as well as some ways your organization can prevent side-channel attacks on its VMs.

September 4, 2015 | By Brad Harris

article

Attackers frequently use side-channel attacks to gain access to virtual machines housing services for an enterprise. Learning about these attacks, which include FLUSH+RELOAD and Prime+Probe attacks, can help professionals understand how to prevent them.

article

Side-Channel Attacks Against Multicore Processors in Cross-VM Scenarios: Part II

Discussion of two side-channel attacks meant to retrieve sensitive information from a virtual machine (VM) on the same physical processor package.

August 28, 2015 | By Brad Harris

article

Organizations may be faced with side-channel attacks when they are co-residents with another enterprise on a server, such as one that acts as a host for cloud services. Learn about the basics of these attacks to protect against them.

article

Side-Channel Attacks Against Multicore Processors in Cross-VM Scenarios: Part I

This discussion is meant to facilitate the understanding of side-channel attacks, which affect today's modern multicore processors.

August 21, 2015 | By Brad Harris

article

The VENOM flaw is something most people should care about because almost any organization could be affected. But how you approach the vulnerability will depend on your enterprise's unique security situation, third-party vendors and more.

article

Does the VENOM Vulnerability Affect You?

The VENOM flaw is the latest security vulnerability to come to light. But are you at risk? And how should you react if your data is suceptible to attacks?

May 21, 2015 | By Koen Van Impe

article

Attackers Compromise Admin Account to Infect Manufacturing Company With BitPaymer Ransomware

Spear Phishing Report Card: Perfect Scores in School Security Pen Testing

Google 2FA Approach Turns Android Smartphones Into Security Keys

April Scams May Ruin Plans: Threat Actors Ramp Up for Tax Scam Season

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

How a Cunning Remote Overlay Malware Met Its Match

The US Is Slow to Adopt EHRs, But That Might Actually Be a Good Thing for Healthcare Security

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

Credential Dumping Campaign Hits Multinational Corporations

Cybercriminals Spoof Major Accounting and Payroll Firms in Tax Season Malware Campaigns

Buffer Overflow Vulnerability in TP-Link Routers Can Allow Remote Attackers to Take Control

Podcast: Muscle Memory and Cyber Fitness Training

Podcast: Zero Trust and the Evolving Role of Identity and Access Management

Podcast: Digital Identity Trust, Part 3 — Powering Digital Growth With Digital Identity Trust

Podcast: Monitoring National Cybersecurity Trends With Former NSA Deputy Director Bill Crowell

Webinar: MacOS Management Made Easy with MaaS360

Webinar: Encryption is the Fastest Way to Protect Data

Webinar: Under the Radar: Live Webinar and Demo

Webinar: Facilitating Secure Hybrid Cloud Adoption with Guardium

Tag: Virtual Machine (VM)

Catastrophe, Not Compromise: VFEmail Attack Destroys Decades of Data

New Security Enhancements for Microsoft Windows Server 2016

Fighting Fire With WinDBG: Breaking URLZone’s Anti-VM Armor

GootKit: Bobbing and Weaving to Avoid Prying Eyes

Security and the Virtual Network: Part I

Ethereum: A Second-Generation Blockchain for the IoT

Side-Channel Attacks Against Multicore Processors in Cross-VM Scenarios: Part III

Side-Channel Attacks Against Multicore Processors in Cross-VM Scenarios: Part II

Side-Channel Attacks Against Multicore Processors in Cross-VM Scenarios: Part I

Does the VENOM Vulnerability Affect You?