Cisco released a security advisory detailing an unauthenticated command injection vulnerability in the web-based management interface of several Cisco IP phones. Learn more now.

Unpack how Cobalt Strike works to create more robust detections. Get deep insights from IBM Security X-Force Red experts.

The IBM X-Force team analyzes trends in attack behaviors across platforms and industries, providing insights on the most significant security threats.

Dive into how X-Force Red experts created hypothetical detections that could be implemented to detect publicly disclosed active call stack evasion techniques.

IBM X-Force uncovered a campaign where attackers were exploiting the vulnerability identified in CVE-2023-3519 to attack NetScaler Gateways to insert a malicious script into the HTML content of the...

Recent analysis of Hive0051 has identified three key changes to capabilities: an improved multi-channel approach to DNS fluxing, obfuscated multi-stage scripts, and the use of fileless PowerShell...

Microsoft recently found and patched a vulnerability in the Microsoft Kernel streaming service. Learn more here.

Dive into the analysis and exploitation of a vulnerability in the Windows Ancillary Function Driver for Winsock for Local Privilege Escalation on Windows 11. More from X-Force Red experts.

Get the Cost of a Data Breach Report 2023 for the most up-to-date insights into the evolving cybersecurity threat landscape

See what the IBM Security X-Force Threat Intelligence Index 2024 has to say about today's cybersecurity landscape.

Unpack a newly discovered malware family dubbed “Minodo” — and explore the intricate nature of cooperation among cybercriminal groups and their members. More from IBM Security X-Force.

...Our presentation will explore a full-chain Windows kernel post-exploitation scenario, where we discovered and weaponized a Windows 0-day vulnerability to ...

See how one IBM X-Force researcher reverse engineered the patch for CVE-2022-34718, and unpack the affected protocols, how the bug was identified, and how it was reproduced.

Unpack BlackCat ransomware's upgraded capabilities, meant to thwart defensive measures. IBM Security X-Force shares the analysis.

IBM X-Force discovered a new variant of Gootloader — the "GootBot" implant. Learn more about this and how to combat it.

See what the IBM Security X-Force Threat Intelligence Index 2024 has to say about today's cybersecurity landscape.

Get top insights from the 2023 Cloud Threat Landscape Report, provided by IBM X-Force.

Cyber pros have questions about the companies' recent announcements.

As of December 2023, IBM X-Force has uncovered multiple lure documents featuring the Israel-Hamas war to facilitate delivery of the ITG05 Headlace malware. Explore the findings.

Azure DevOps Services Attack Toolkit. Contribute to xforcered/ADOKit development by creating an account on GitHub.

Discover the latest intelligence on malware, vulnerabilities, attack vectors and more in the new IBM X-Force research hub.

Stephanie Carruthers, Chief People Hacker for the X‑Force Red team at IBM Security, breaks down how the cyber incident at Uber happened and what helps prevent these types of attacks.

Ukraine's CERT warns of a new phishing campaign by Russia-linked APT28. They're deploying stealthy malware like MASEPIE and STEELHOOK.

Phishing is a tried and true way for threat actors to get the information they want. Let's explore their newest tactics and how to spot them.

Take a look at a new vulnerability discovered in the IoT platform, ThingsBoard. More from IBM Security X-Force experts.

IBM Security X-Force identified a novel technique employed by an attacker introducing a command and control (C2) channel built upon Discord channel messages. Read the complete analysis.

Stolen credentials are on the rise. What does this mean for the evolving threat landscape? Find out in the 2024 Threat Intelligence Index.

Read the in-depth analysis on BlotchyQuasar, a banking trojan hardcoded to collect credentials from Latin American-based banking applications and websites. More from IBM Security X-Force.

Review the attack surface presented by SQL Server — and how to abuse misconfigurations and vulnerabilities using X-Force Red's tool SQLRecon.

Ivanti has several known vulnerabilities that are being widely exploited. Read the X-Force team's research and learn how they are working towards resolutions.

Cybercriminal group ITG10 is likely targeting South Korean government, universities, think tanks, and dissidents. IBM Security X-Force shares the analysis.

Charles Henderson, a visionary leader, the Global Managing Partner and the Head of X-Force. With extensive experience and a deep understanding of the intricacies of the information security sector

Welcome back to Source Code, Decipher’s weekly news wrap podcast with input from our sources.

As threat intelligence practitioners, we often discuss our biases, mental models, and the common fallacies that impact our analysis and reporting. This talk ...

PikaBot, a stealthy malware normally distributed via malspam is now being spread via malicious ads.

According to new data, Asia Pacific has become the most targeted region for the first time since records were kept, with Australia, Japan and India the hardest hit.

The Security Intelligence blog features analysis and insights from hundreds of the brightest minds in the cybersecurity industry.

Despite its shutdown, operators from the Conti syndicate remain active and collaborative in new factions. IBM Security X-force shares the intel.

See what the IBM Security X-Force Threat Intelligence Index 2024 has to say about today's cybersecurity landscape.

Welcome back to Source Code, Decipher’s weekly news wrap podcast with input from our sources.

Security Pro File: The old-school hacker traces a path from young hardware tinkerer to senior cybersecurity executive.

Understanding the various ways AI models can break isn’t cause for alarm, it’s knowledge that drives mitigative action and preparedness. 

Phishing is a tried and true way for threat actors to get the information they want. Let's explore their newest tactics and how to spot them.

Since March 2024, IBM X-Force has been tracking several large-scale phishing campaigns distributing the Grandoreiro banking trojan.

X-Force is tracking multiple ongoing ITG05 phishing campaigns featuring lure documents covering several topics. Learn more about this continuing threat.

Cyber-threats are getting more sophisticated and destructive every day.From ransomware to phishing emails, the attacks are constant. Hardware components can eve

IBM Security X-Force uncovered evidence indicating that the Russia-based cybercriminal syndicate "Trickbot group" has been attacking Ukraine since the Russian invasion. Explore an in-depth analysis...

The United States and United Kingdom issue historic joint cyber sanctions WASHINGTON — Today, the United States, in coordination with the United Kingdom, is designating seven individuals who are part...

Welcome to IBM Tech Now, a bi-weekly series bringing you the latest and greatest IBM technology news and announcements. Make sure to check out the IBM Cloud ...

IBM X-Force researchers have been tracking developments in the WailingCrab malware family, also known as a WikiLoader. Learn about the teams' discoveries here.

A vulnerability in SPNEGO NEGOEX has been reclassified as "Critical" after it was discovered that it could allow attackers to remotely execute code.

We are pleased to announce that the Red Hat Insights malware detection service is now generally available.

A new phishing campaign conducted by Hive0117 was recently discovered, delivering the fileless malware called DarkWatchman. Explore the analysis from IBM X-Force researchers.