IBM X-Force

Learn more about IBM’s team of experts who closely monitor and assess cybersecurity trends and insights. In this edition, meet Troy Bettencourt, Global Partner & Head of X-Force.

Learn more about IBM’s team of experts who closely monitor and assess cybersecurity trends and insights. In this edition, meet Mark Hughes, Global Managing Partner, Cybersecurity Services for IBM.

Learn more about IBM’s team of experts who closely monitor and assess cybersecurity trends and insights. In this edition, meet Claire Nuñez, Creative Director at IBM X-Force Cyber Range.

Learn more about our team of experts who closely monitor and assess cybersecurity trends and insights, including discovering and ethically disclosing the latest vulnerabilities and threats affectin...

Learn more about our team of experts who closely monitor and assess cybersecurity trends and insights, including discovering and ethically disclosing the latest vulnerabilities and threats affectin...

IBM X-Force is monitoring active Hive0156 Remcos Remote Access Trojan (RAT) campaigns targeting victims of Ukraine. Learn more about this threat.

Skip the nose clip and head straight for the diving bell in this descent into the murky depths of the Resource Prefetch Predictor web artifacts found within Chromium-based web browsers, in use on b...

Hive0145, the threat actor known for delivering Strela Stealer to exfiltrate email credentials, is back to no good and now targeting Germany using malicious SVG files to download a simple reverse s...

Explore how Azure Arc can be identified in environments, misconfigurations in deployment can allow for privilege escalation, an overprovisioned Service Principal can be used for code execution and ...

Dive into research on a double-free vulnerability, CVE-2019-11932, in an image processing library used by WhatsApp and a GIF-processing vulnerability affecting Android mobile phones.

China-aligned threat actor Hive0154 has spread numerous phishing lures in targeted campaigns throughout 2025 to deploy the Pubload backdoor. As of May 2025, X-Force noticed these attacks targeting ...

Learn more about machine learning training environments and infrastructure, as well as different attack scenarios against critical components, including cloud compute, model artifact storage and mo...

Threat actors have been heavily targeting the industrial sector in recent years. Learn more about why this industry is being targeted and what organizations can do to protect against these cyberatt...

IBM X-Force has been monitoring phishing email campaigns from Hive0131 pretending to be The Judiciary of Colombia and using fake notifications to Colombians of criminal proceedings to deliver malwa...

Since the start of 2025, IBM X-Force has been tracking a phishing campaign targeting financial institutions worldwide, using weaponized Scalable Vector Graphics (SVG) files to initiate multi-stage ...