X-Force - Security Intelligence

Security intelligence can go a long way toward preventing a data breach from occurring or, in some unfortunate cases, helping a company recover from a damaging breach. Understanding what your vulnerabilities are and where they exist is key.

article

Forecasting a Breach Is Like Finding a Needle in a Haystack — Not That Tough

Forecasting a data breach doesn't have to be difficult. With the help of threat intelligence and collaboration, organizations can spot vulnerabilities.

September 16, 2015 | By Rick Robinson

article

When CoreBot was last in the headlines, it was because the modular malware showed that it could potentially transform itself to target different banks or execute multiple types of attacks. That prediction is now coming true, as CoreBot has evolved.

article

An Overnight Sensation — CoreBot Returns as a Full-Fledged Financial Malware

CoreBot's developers have evolved the malware into a full-fledged banking Trojan that executes a variety of attacks to steal victims' bank credentials.

September 10, 2015 | By Limor Kessem

article

Could certificates-as-a-service be the next big thing in the Deep Web and criminal underground? It certainly seems that way, and the use of stolen certificates is increasing in popularity among malicious actors looking to inject malcode into machines.

article

Certificates-as-a-Service? Code Signing Certs Become Popular Cybercrime Commodity

IBM Security X-Force researchers recently uncovered a new trend dominating the cybercrime underground: the sale of stolen or fraudulent certificates.

September 9, 2015 | By Limor Kessem

article

Security professionals have long used the Common Vulnerability Scoring System (CVSS) to rate vulnerabilities, but the third and latest version of this system should be the most accurate yet. The updated scoring techniques rate the severity of flaws.

article

Markdown: Designer Vulnerabilities Get a Fresh CVSS v3 Look

The Common Vulnerability Scoring System (CVSS) has been completely redone to more accurately reflect the scope and impact of vulnerabilities.

September 8, 2015 | By Pamela Cobb

article

An IBM Security customer recently sent a piece of malware to the X-Force Security Research team for analysis, which provided a great opportunity to present some common techniques used by malware authors to complicate dynamic and static analysis.

article

An Example of Common String and Payload Obfuscation Techniques in Malware

IBM X-Force researcher Igor Aronov examines some common techniques used by malware authors to complicate dynamic (automated) and static (manual) analysis.

September 4, 2015 | By Igor Aronov

article

The truth about malware is that it's difficult to prevent and detect. Security professionals can use the right tools to improve their infrastructure, but much of their efforts must focus on looking out for certain red flags and warning signs.

article

The Myth of the Obvious Malware

Malware doesn't present itself like it's often depicted in the movies, so it's up to enterprises to be on the lookout for these stealthy programs.

September 1, 2015 | By Pamela Cobb

article

IBM Security X-Force research has revealed an advanced new banking Trojan that has been named "Shifu," from the Japanese word for thief. The malware currently targets 14 banks in Japan and select electronic banking platforms used across Europe.

article

Shifu: ‘Masterful’ New Banking Trojan Is Attacking 14 Japanese Banks

A brand -ew advanced banking Trojan discovered in the wild has been named Shifu by IBM Security X-Force, after the Japanese word for thief.

August 31, 2015 | By Limor Kessem

article

Security teams know they should be on the lookout for malware, but it's nearly impossible to avoid being infected at some point. Instead, professionals should make sure they have the tools necessary to prevent data leaks or more malicious downloads.

article

Watch Out for CoreBot, New Stealer in the Wild

IBM Security X-Force researchers recently discovered CoreBot, a seemingly generic malware that actually operates on a highly sophisticated level.

August 28, 2015 | By Limor Kessem

article

Today's cybercriminals often operate as part of organized crime rings and collaborative efforts, prioritizing the long game in an effort to collect as much information as possible. That's a far cry from the common stereotype of a hacker.

article

The Myth of the Omnipotent Hacker

The way movies and television shows portray a hacker is far off from reality. In today's collaborative world, attackers are often working in crime rings.

August 25, 2015 | By Pamela Cobb

article

Cybercriminals are constantly changing their habits, and security teams need to be aware of the state of the threat to efficiently fight them off. The most recent 2015 IBM X-Force Threat Intelligence Quarterly details some of these threats.

article

Anonymity and Cryptocurrencies Enabling High-Stakes Extortion

The third 2015 IBM X-Force Threat Intelligence Quarterly has been released, detailing the evolution of ransomware, anonymous routers and more.

August 24, 2015 | By Leslie Horacek

article

Attackers Compromise Admin Account to Infect Manufacturing Company With BitPaymer Ransomware

Spear Phishing Report Card: Perfect Scores in School Security Pen Testing

Google 2FA Approach Turns Android Smartphones Into Security Keys

April Scams May Ruin Plans: Threat Actors Ramp Up for Tax Scam Season

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

How a Cunning Remote Overlay Malware Met Its Match

The US Is Slow to Adopt EHRs, But That Might Actually Be a Good Thing for Healthcare Security

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

Credential Dumping Campaign Hits Multinational Corporations

Cybercriminals Spoof Major Accounting and Payroll Firms in Tax Season Malware Campaigns

Buffer Overflow Vulnerability in TP-Link Routers Can Allow Remote Attackers to Take Control

Podcast: Muscle Memory and Cyber Fitness Training

Podcast: Zero Trust and the Evolving Role of Identity and Access Management

Podcast: Digital Identity Trust, Part 3 — Powering Digital Growth With Digital Identity Trust

Podcast: Monitoring National Cybersecurity Trends With Former NSA Deputy Director Bill Crowell

Webinar: MacOS Management Made Easy with MaaS360

Webinar: Encryption is the Fastest Way to Protect Data

Webinar: Under the Radar: Live Webinar and Demo

Webinar: Facilitating Secure Hybrid Cloud Adoption with Guardium

Tag: X-Force

Forecasting a Breach Is Like Finding a Needle in a Haystack — Not That Tough

An Overnight Sensation — CoreBot Returns as a Full-Fledged Financial Malware

Certificates-as-a-Service? Code Signing Certs Become Popular Cybercrime Commodity

Markdown: Designer Vulnerabilities Get a Fresh CVSS v3 Look

An Example of Common String and Payload Obfuscation Techniques in Malware

The Myth of the Obvious Malware

Shifu: ‘Masterful’ New Banking Trojan Is Attacking 14 Japanese Banks

Watch Out for CoreBot, New Stealer in the Wild

The Myth of the Omnipotent Hacker

Anonymity and Cryptocurrencies Enabling High-Stakes Extortion