IBM X-Force Research & Development - Insights on Security Threats

IBM X-Force discovered a new variant of Gootloader — the “GootBot” implant — which facilitates stealthy lateral movement and makes detection and blocking of Gootloader campaigns more difficult within enterprise environments. X-Force...

Containers, security and risks within containerized environments

How to keep your secrets safe: A password primer

How an attacker can achieve persistence in Google Cloud Platform (GCP) with Cloud Shell

News

Offensive Security

Expert analysis from the X-Force Red hackers hired to break into organizations and help fix their most critical vulnerabilities.

Security Intelligence

{{title}}

{{title}}

{{title}}

{{title}}

Topics

IBM X-Force

Critically close to zero(day): Exploiting Microsoft Kernel streaming service

Reflective call stack detections and evasions

Adversary Services

Analysis of a Remote Code Execution (RCE) Vulnerability in Cobalt Strike 4.7.1

Critically close to zero(day): Exploiting Microsoft Kernel streaming service

Reflective call stack detections and evasions

X-Force certified containment: Responding to AD CS attacks

Poor communication during a data breach can cost you — Here’s how to avoid it

Ransomware renaissance 2023: The definitive guide to stay safer

Defensive Security

X-Force certified containment: Responding to AD CS attacks

Poor communication during a data breach can cost you — Here’s how to avoid it

Ransomware renaissance 2023: The definitive guide to stay safer

5 essential steps for every ransomware response plan

Threat Intelligence

Charles Henderson's Cybersecurity Awareness Month ...

GootBot – Gootloader’s new approach to post-exploitation

When the absence of noise becomes signal: Defensive considerations for Lazarus FudModule

Containers, security and risks within containerized environments

How to keep your secrets safe: A password primer

How an attacker can achieve persistence in Google Cloud Platform (GCP) with Cloud Shell

Offensive Security

An Attack Against Time

When the absence of noise becomes signal: Defensive considerations for Lazarus FudModule

Containers, security and risks within containerized environments

How to keep your secrets safe: A password primer

How an attacker can achieve persistence in Google Cloud Platform (GCP) with Cloud Shell

Topic updates