IBM X-Force Exchange – WindowsTechs.com

Update on Widespread Supply-Chain Compromise

Posted on December 16, 2020 by Nick Rossmann

SolarWinds has announced a cyberattack on its systems that compromised specific versions of the SolarWinds Orion Platform, a widely used network management tool. SolarWinds reports that this incident was likely the result of a highly sophisticated, targeted and manual supply chain attack by a nation state, but it has not, to date, independently verified the […]

The post Update on Widespread Supply-Chain Compromise appeared first on Security Intelligence.

Continue reading Update on Widespread Supply-Chain Compromise→

A Reminder to Stay Vigilant

Posted on December 11, 2020 by Limor Kessem

This year has been a challenging one for organizations that faced data breaches, intrusions and ransomware attacks at the hands of cyber criminals and nation-state attackers. Cybersecurity firm FireEye announced on Dec. 8, 2020, that an adversary targeted and gained unauthorized access to its Red Team tools — an important call to every company to […]

The post A Reminder to Stay Vigilant appeared first on Security Intelligence.

Continue reading A Reminder to Stay Vigilant→

A Reminder to Stay Vigilant

Posted on December 9, 2020 by Limor Kessem

The post A Reminder to Stay Vigilant appeared first on Security Intelligence.

Continue reading A Reminder to Stay Vigilant→

Zeus Sphinx Back in Business: Some Core Modifications Arise

Posted on May 11, 2020 by Nir Shwarts

With Zeus Sphinx back in the financial cybercrime arena, IBM X-Force is providing a technical analysis of the Sphinx Trojan’s current version, which was first released in the wild in late 2019.

The post Zeus Sphinx Back in Business: Some Core Modifications Arise appeared first on Security Intelligence.

Continue reading Zeus Sphinx Back in Business: Some Core Modifications Arise→

TrickBot Campaigns Targeting Users via Department of Labor FMLA Spam

Posted on April 30, 2020 by Limor Kessem

Recent analysis from IBM X-Force spam traps uncovered a new Trickbot campaign that currently targets email recipients with fake messages purporting to come from the U.S. Department of Labor.

The post TrickBot Campaigns Targeting Users via Department of Labor FMLA Spam appeared first on Security Intelligence.

Continue reading TrickBot Campaigns Targeting Users via Department of Labor FMLA Spam→

SBA Spoofed in COVID-19 Spam to Deliver Remcos RAT

Posted on April 27, 2020 by Melissa Frydrych

As the ongoing COVID-19 pandemic impacts small businesses in the U.S., cybercriminals are trusting that people will be more likely to open unsolicited emails purporting to come from relevant entities.

The post SBA Spoofed in COVID-19 Spam to Deliver Remcos RAT appeared first on Security Intelligence.

Continue reading SBA Spoofed in COVID-19 Spam to Deliver Remcos RAT→

PXJ Ransomware Campaign Identified by X-Force IRIS

Posted on March 12, 2020 by Megan Roddie

In a recent analysis from IBM’s X-Force Incident Response and Intelligence Services (IRIS), our team discovered activity related to a new strain of ransomware known as PXJ ransomware.

The post PXJ Ransomware Campaign Identified by X-Force IRIS appeared first on Security Intelligence.

Continue reading PXJ Ransomware Campaign Identified by X-Force IRIS→

Cyberthreat Intelligence Tooling — How to Quickly Locate Your Key Indicators

Posted on February 21, 2020 by Joerg Stephan

While there are many cyberthreat intelligence tools and platforms that can locate indicators for you, it is important to understand the process yourself before relying on a tool.

The post Cyberthreat Intelligence Tooling — How to Quickly Locate Your Key Indicators appeared first on Security Intelligence.

Continue reading Cyberthreat Intelligence Tooling — How to Quickly Locate Your Key Indicators→

Emotet Activity Rises as It Uses Coronavirus Scare to Infect Targets in Japan

Posted on February 5, 2020 by Limor Kessem

IBM X-Force has identified a spam campaign targeting users in Japan that employs the Coronavirus scare as a lure to encourage people to open malicious emails.

The post Emotet Activity Rises as It Uses Coronavirus Scare to Infect Targets in Japan appeared first on Security Intelligence.

Continue reading Emotet Activity Rises as It Uses Coronavirus Scare to Infect Targets in Japan→

New NetWire RAT Campaigns Use IMG Attachments to Deliver Malware Targeting Enterprise Users

Posted on January 21, 2020 by Megan Roddie

IBM X-Force researchers have discovered a new campaign targeting organizations with fake business emails that deliver NetWire remote-access Trojan (RAT) variants.

The post New NetWire RAT Campaigns Use IMG Attachments to Deliver Malware Targeting Enterprise Users appeared first on Security Intelligence.

Continue reading New NetWire RAT Campaigns Use IMG Attachments to Deliver Malware Targeting Enterprise Users→