Zero-Day Attack - Security Intelligence

Woman using her mobile phone on public transit: mobile threat defense

article

Stay on Top of Zero-Day Malware Attacks With Smart Mobile Threat Defense

Mobile threats are growing both in number and severity. To protect crucial data, organizations need mobile threat defense solutions that can replicate the accuracy of manual analysis on a large scale.

December 14, 2018 | By Vivien Raoul

article

A businesswoman updating software on a laptop.

news

Researchers Report Nearly 20,000 Vulnerabilities in 2017, Reinforcing the Need for a Proactive Cybersecurity Strategy

A recent study revealed that the number of software vulnerabilities soared to almost 20,000 in 2017, suggesting an urgent need for organizations to adopt a proactive cybersecurity strategy.

April 5, 2018 | By Shane Schick

news

article

Apache Struts 2: A Zero-Day Quick Draw

It took fraudsters less than 24 hours after the disclosure of a previously unknown Apache Struts 2 vulnerability to develop a Python script to exploit it.

May 16, 2017 | By Dave McMillen

article

Popular forum software vBulletin was forced to shut down its website and issue an emergency patch, but organizations that haven't updated to the more secure version of the program are at risk of server hacking and other types of attacks.

news

Server Hacking Against vBulletin Users Escalates Following Emergency Patch

Cybercriminals were reportedly going on a server hacking spree weeks after vBulletin patched a major vulnerability in its popular online forum software.

November 18, 2015 | By Shane Schick

news

Microsoft has released new exploit mitigations after discovering that several zero-day use-after-free (UAF) vulnerabilities were targeting Internet Explorer. These features include the Memory Protector and the Isolated Heap.

article

Understanding IE’s New Exploit Mitigations: The Memory Protector and the Isolated Heap

In response to two attacks, new Internet Explorer exploit mitigations were released to increase the cost of exploiting IE use-after-free vulnerabilities.

August 29, 2014 | By Mark Yason

article

Defending your company through blacklisting and white-listing techniques. Which one is better for your company? It depends on what you're trying to achieve and the kinds of attacks you're attempting to avoid.

article

Blacklisting, White-listing and the Way Forward: Comments on the Schneier-Ranum Face-Off

Will white-listing or blacklisting better protect your enterprise? We weigh in on the ongoing debate.

March 20, 2013 | By George Tubin

article

Java is the most vulnerable programming language used by businesses today; however, it may be too critical to a business's functionality to remove. Many firms use programs that require usage of older versions of the script.

article

Can You Get Rid of Java?

Java suffers the most malware infections of any programming language and recent zero-day exploits now warrant removing it from business applications.

March 7, 2013 | By George Tubin

article

GlitchPOS Creator Offers Instructional Video to Make Deploying POS Malware Easier

New Mirai Variant Targets Business Presentation and Display Devices

Brute-Force Attack Wave Uses Legacy Protocols, Credential Dumps to Compromise Cloud Accounts

Threat Actors Use Fake Copyright Infringement Notifications in Instagram Hacking Campaign

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

Security Considerations for Whatever Cloud Service Model You Adopt

At RSAC 2019, It’s Clear the World Needs More Public Interest Technologists

To Improve Critical Infrastructure Security, Bring IT and OT Together

The Business of Organized Cybercrime: Rising Intergang Collaboration in 2018

Spectre, Meltdown and More: What You Need to Know About Hardware Vulnerabilities

Stranger Danger: X-Force Red Finds 19 Vulnerabilities in Visitor Management Systems

Cryptojacking Rises 450 Percent as Cybercriminals Pivot From Ransomware to Stealthier Attacks

Podcast: Digital Identity Trust, Part 3 — Powering Digital Growth With Digital Identity Trust

Podcast: Monitoring National Cybersecurity Trends With Former NSA Deputy Director Bill Crowell

X-Force Red in Action: Spotlight on Password Security With Dustin ‘Evil Mog’ Heywood

Podcast: Demystifying the Role of AI in Cybersecurity

Webinar: Under the Radar: March Live Webinar and Demo

Cyberattacks and the Airline Industry: The Strategic Threat Landscape

Webinar: Crypto Agility: Your Super Power Defense

Webinar: Bridging the Gap Between Privacy and Security: Using Technology to Manage Complex Breach Disclosure Regulations

Tag: Zero-Day Attack

Stay on Top of Zero-Day Malware Attacks With Smart Mobile Threat Defense

Researchers Report Nearly 20,000 Vulnerabilities in 2017, Reinforcing the Need for a Proactive Cybersecurity Strategy

Apache Struts 2: A Zero-Day Quick Draw

Server Hacking Against vBulletin Users Escalates Following Emergency Patch

Understanding IE’s New Exploit Mitigations: The Memory Protector and the Isolated Heap

Blacklisting, White-listing and the Way Forward: Comments on the Schneier-Ranum Face-Off

Can You Get Rid of Java?