Light Dark
February 10, 2017 By Krissy Safi 2 min read
X-Force
Application Security
Endpoint
Network
Threat Intelligence

IBM X-Force Red is a group of security professionals and ethical hackers whose goal is to help businesses discover vulnerabilities in their computer networks, hardware and software applications before cybercriminals do. X-Force Red, part of IBM Security Services, also examines human security vulnerabilities in daily processes and procedures that attackers often use to circumvent security controls.

X-Force Red Introduces The Red Portal

Today, IBM X-Force Red is announcing The Red Portal, a cloud-based collaboration platform for clients and security professionals that presents an end-to-end view of security testing programs. Clients can view real-time testing project milestones, vulnerabilities across all assets, reports of findings and the overall status of their managed testing program.

The industry expertise of X-Force Red is central to successfully building and maintaining a top-notch security testing program, and the collaborative nature of The Red Portal makes it easier than ever for clients to be involved in the testing process.

The Dashboard

The Dashboard page provides a real-time view of the client’s overall security testing program. They can see how many tests have been conducted and the total number of findings that have been identified, including the number of critical and high-risk items.

Clients can also view how many tests are in each phase of the testing process and whether any are awaiting additional client input. Up-to-date test statuses are a simple login away, allowing clients to embed themselves in the testing process as little or as much as they want.

Scheduling a Test

The Red Portal centralizes and streamlines all communications with X-Force Red and eliminates the need to pass sensitive target information through insecure methods. All test requests are made via one simple, secure form, and required target information is also collected here. All target and finding information is encrypted. Clients can also define their desired testing start date with the built-in scheduling capability.

Reviewing Findings and the Final Report

Once the security test has begun, clients can view findings as the tester makes them available — meaning remediation can begin immediately on the most critical items. After the test is complete, an interactive final report is available from the dashboard. The final report contains all findings, including details about the vulnerabilities, evidence of exploitation and detailed guidance for remediation and prioritization.

 |  |  |  |  | 
Krissy Safi
Sr. Security Services Offering Manager, IBM

More from X-Force
May 6, 2024

Evolving red teaming for AI environments

2 min read - As AI becomes more ingrained in businesses and daily life, the importance of security grows more paramount. In fact, according to the IBM Institute for Business Value, 96% of executives say adopting generative AI (GenAI) makes a security breach likely in their organization in the next three years. Whether it’s a model performing unintended actions, generating misleading or harmful responses or revealing sensitive information, in the AI era security can no longer be an afterthought to innovation.AI red teaming is emerging…

May 2, 2024

A spotlight on Akira ransomware from X-Force Incident Response and Threat Intelligence

7 min read - This article was made possible thanks to contributions from Aaron Gdanski.IBM X-Force Incident Response and Threat Intelligence teams have investigated several Akira ransomware attacks since this threat actor group emerged in March 2023. This blog will share X-Force’s unique perspective on Akira gained while observing the threat actors behind this ransomware, including commands used to deploy the ransomware, active exploitation of CVE-2023-20269 and analysis of the ransomware binary.The Akira ransomware group has gained notoriety in the current cybersecurity landscape, underscored…

April 9, 2024

Hive0051 goes all in with a triple threat

13 min read - As of April 2024, IBM X-Force is tracking new waves of Russian state-sponsored Hive0051 (aka UAC-0010, Gamaredon) activity featuring new iterations of Gamma malware first observed in November 2023. These discoveries follow late October 2023 findings, detailing Hive0051's use of a novel multi-channel method of rapidly rotating C2 infrastructure (DNS Fluxing) to deliver new Gamma malware variants, facilitating more than a thousand infections in a single day. An examination of a sample of the lures associated with the ongoing activity reveals…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2024 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature