TrickBot Gang Uses Template-Based Metaprogramming in Bazar Malware
Malware authors use various techniques to obfuscate their code and protect against reverse engineering. Techniques such as control flow obfuscation
Tag : X Force
Top-Ranking Banking Trojan Ramnit Out to Steal Payment Card Data
Shopping online is an increasingly popular endeavor, and it has accelerated since the COVID-19 pandemic. Online sales during the 2021 holiday season
TrickBot Bolsters Layered Defenses to Prevent Injection Research
This post was written with contributions from IBM X-Force’s Limor Kessem and Charlotte Hammond. The cyber crime gang that operates the TrickBot
The Best Threat Hunters Are Human
“You won’t know you have a problem unless you go and look.” Neil Wyler, who is known as ‘Grifter’ in the hacker community, made that
6 min read
MCP – Deadpool & Bob, Agent of Hydra Painting Guide
Welcome to my latest painting guide! This time I tackle the epic Deadpool and Bob, agent of hydra. This is a superb kit filled with cool features
5 min read
MCP – Cable & Domino Painting Guide
Welcome to my latest painting guide! This time covering the epic Cable and Domino. I’ve really been looking forward to this pair. Cable is one of
Log4Shell Vulnerability Risks for OT Environments — and How You Can Better Protect Against Them
You’d have to look far and wide to find an IT professional who isn’t aware of (and probably responding to) the Log4Shell vulnerability. The
Zero Trust and DNS Security: Better Together
How many times have you heard the popular information security joke: “It’s always DNS”? It means that every time there’s a problem you
Nation State Threat Group Targets Airline with Aclip Backdoor
In March 2021, IBM Security X-Force observed an attack on an Asian airline that we assess was likely compromised by a state-sponsored adversary using
Nation State Threat Group Targets Airline with Aclip Backdoor
IBM Security X-Force has observed a state-sponsored adversary using a new backdoor that utilizes Slack to attack airline organizations. The adversary
Nation State Threat Group Targets Airline with Aclip Backdoor
IBM Security X-Force has observed a state-sponsored adversary using a new backdoor that utilizes Slack to attack airline organizations. The adversary
How Log4j Vulnerability Could Impact You
If you hadn’t heard of Apache Log4j, chances are it’s on your radar now. In fact, you may have been using it for years. Log4j is a logging
How Log4j Vulnerability Could Impact You
If you hadn’t heard of Apache Log4j, chances are it’s on your radar now. In fact, you may have been using it for years. Log4j is a logging
How Log4j Vulnerability Could Impact You
MITIGATION UPDATE: You must upgrade to 2.16 to mitigate this vulnerability. Do NOT enable JNDI in 2.16. Follow:
How Log4j Vulnerability Could Impact You
MITIGATION UPDATE: You must upgrade to 2.17 to mitigate CVE-2021-45105 if you use Java 8. You must upgrade to 2.16 to mitigate CVE-2021-44228 if you