Advanced Threats – Page 5 – WindowsTechs.com

Internet of Threats: IoT Botnets Drive Surge in Network Attacks

Posted on April 22, 2021 by Dave McMillen

As Internet of things (IoT) devices in homes, industrial environments, transportation networks and elsewhere continue to proliferate, so does the attack surface for malicious IoT network attackers. IoT attack activity in 2020 dramatically surpassed the combined volume of IoT activity observed by IBM Security X-Force in 2019. Turning our attention to the factors behind this […]

The post Internet of Threats: IoT Botnets Drive Surge in Network Attacks appeared first on Security Intelligence.

Continue reading Internet of Threats: IoT Botnets Drive Surge in Network Attacks→

What Is SIEM and How Does it Work? The Past, Present and Future

Posted on April 20, 2021 by Wendy Willner

Security information and event management (SIEM) solutions provide organizations centralized visibility into their IT and even sometimes OT environments. At a high level, a SIEM turns data into actionable insights by: Ingesting a vast amount of event data from across the enterprise, including on-premise and cloud-based environments; Applying real-time analytics to aggregate related security events […]

The post What Is SIEM and How Does it Work? The Past, Present and Future appeared first on Security Intelligence.

Continue reading What Is SIEM and How Does it Work? The Past, Present and Future→

Combating Sleeper Threats With MTTD

Posted on April 16, 2021 by Koen Van Impe

During the SolarWinds Orion supply chain compromise, threat actors lurked in the victim’s network for more than a year. Discovered by FireEye in December 2020, the earliest traces of a modified SolarWinds Orion go back as early as October 2019. Although these early versions did not contain the malicious backdoor (this was added in March […]

The post Combating Sleeper Threats With MTTD appeared first on Security Intelligence.

Continue reading Combating Sleeper Threats With MTTD→

IBM Named a Strong Performer in The Forrester Wave™: External Threat Intelligence Services, Q1 2021

Posted on April 1, 2021 by Christian Falco

How can organizations keep up with today’s evolving threat landscape, highlighted by targeted phishing attacks, profit-seeking ransomware and advanced persistent threats (APTs)? The simple answer is better threat intelligence. Please stop me if this is something you’ve heard before. As cyberattacks continue to become more wide-ranging and complex, so too has the type of threat […]

The post IBM Named a Strong Performer in The Forrester Wave™: External Threat Intelligence Services, Q1 2021 appeared first on Security Intelligence.

Continue reading IBM Named a Strong Performer in The Forrester Wave™: External Threat Intelligence Services, Q1 2021→

Threat Actors’ Most Targeted Industries in 2020: Finance, Manufacturing and Energy

Posted on March 31, 2021 by Limor Kessem

IBM Security’s annual X-Force Threat Intelligence Index uses data derived from across our teams and managed customers to gather insights about the topmost targeted industries every year, helping organizations manage risk and resource investment in their security programs. When it comes to managing digital risk and facing potential cyberattacks, each industry faces its own unique […]

The post Threat Actors’ Most Targeted Industries in 2020: Finance, Manufacturing and Energy appeared first on Security Intelligence.

Continue reading Threat Actors’ Most Targeted Industries in 2020: Finance, Manufacturing and Energy→

2021 X-Force Threat Intelligence Index Reveals Peril From Linux Malware, Spoofed Brands and COVID-19 Targeting

Posted on February 24, 2021 by Camille Singleton

From the front lines of incident response engagements to managed security services, IBM Security X-Force observes attack trends firsthand, yielding insights into the cyber threat landscape. Every year, X-Force collates billions of data points to assess cybersecurity threats to our customers. This report — the X-Force Threat Intelligence Index 2021 — represents our latest edition of […]

The post 2021 X-Force Threat Intelligence Index Reveals Peril From Linux Malware, Spoofed Brands and COVID-19 Targeting appeared first on Security Intelligence.

Continue reading 2021 X-Force Threat Intelligence Index Reveals Peril From Linux Malware, Spoofed Brands and COVID-19 Targeting→

Ransomware 2020: Attack Trends Affecting Organizations Worldwide

Posted on September 28, 2020 by Camille Singleton

Ransomware is one of the most intractable — and common — threats facing organizations across all industries and geographies. And, incidents of ransomware attacks continue to rise. Meanwhile, ransomware threat actors are adjusting their attack model to adapt to improvements that organizations are making to recover from these attacks. As of September 2020, one in […]

The post Ransomware 2020: Attack Trends Affecting Organizations Worldwide appeared first on Security Intelligence.

Continue reading Ransomware 2020: Attack Trends Affecting Organizations Worldwide→

Jackpotting Reveals Openings in Proprietary Software

Posted on September 14, 2020 by Sue Poremba

Jackpotting, an older ATM theft technique, could show security operations team members what to look out for when it comes to Internet of things (IoT) attacks in general, and even election machine vulnerabilities. This technique first entered the U.S. cybersecurity lexicon in 2018, when Brian Krebs warned of attacks at American ATMs. Jackpotting, Krebs explains, […]

The post Jackpotting Reveals Openings in Proprietary Software appeared first on Security Intelligence.

Continue reading Jackpotting Reveals Openings in Proprietary Software→

Under Attack: How Threat Actors are Exploiting SOCKS Proxies

Posted on September 3, 2020 by Fred Donovan

From the basic building blocks of the internet to cryptocurrency mining on a supercomputer, SOCKS sits at the core of computing. A SOCKS proxy can be used to improve network security in an enterprise, but can also be exploited by cybercriminals for nefarious reasons. Take a look at how SOCKS proxies have been manipulated recently […]

The post Under Attack: How Threat Actors are Exploiting SOCKS Proxies appeared first on Security Intelligence.

Continue reading Under Attack: How Threat Actors are Exploiting SOCKS Proxies→

Threat Hunting Techniques: A Quick Guide

Posted on August 5, 2020 by Asheesh Kumar

Threat hunting is an essential part of security operations center services and should be incorporated at an early stage. Threat hunting is the art of finding the unknowns in the environment, going beyond traditional detection technologies, such as security information and event management (SIEM), endpoint detection and response (EDR) and others. There are multiple methods […]

The post Threat Hunting Techniques: A Quick Guide appeared first on Security Intelligence.

Continue reading Threat Hunting Techniques: A Quick Guide→