IBM X-Force has been tracking the activity of ITG23, a prominent cybercrime gang also known as the TrickBot Gang and Wizard Spider. Researchers are seeing an aggressive expansion of the…
Browsing CategoryIBM X-Force Research
More Organizations Saving Time and Costs on Data Breaches with Automation and AI
Breaches of organizations that employ automation and AI in their security systems on average cost over $3 million less compared to businesses that have no such deployment. This takeaway comes…
X-Force Report: No Shortage of Resources Aimed at Hacking Cloud Environments
As cybercriminals remain steadfast in their pursuit of unsuspecting ways to infiltrate today’s businesses, a new report by IBM Security X-Force highlights the top tactics of cybercriminals, the open doors…
LockBit 2.0: Ransomware Attacks Surge After Successful Affiliate Recruitment
After a brief slowdown in activity from the LockBit ransomware gang following increased attention from law enforcement, LockBit is back with a new affiliate program, improved payloads and a change…
Dissecting Sodinokibi Ransomware Attacks: Bringing Incident Response and Intelligence Together in the Fight
Ransomware actors are specializing, collaborating and assisting each other to conduct sophisticated attacks that are becoming increasingly difficult to prevent. Combating these groups effectively similarly requires a team approach —…
Red & Blue: United We Stand
Offensive and defensive security are typically viewed as opposite sides of the same fence. On one side, the offensive team aims to prevent attackers from compromising an organization, whereas on…
Hunting for Evidence of DLL Side-Loading With PowerShell and Sysmon
Recently, X-Force Red released a tool called Windows Feature Hunter, which identifies targets for dynamic link library (DLL) side-loading on a Windows system using Frida. To provide a defensive counter-measure…
Analysis of Diavol Ransomware Reveals Possible Link to TrickBot Gang
Ransomware has become the number one cyber threat to organizations, making up nearly 25% of attacks IBM X-Force Incident Response remediated in 2020. Ransomware is making headlines on a regular…
Analysis of Diavol Ransomware Reveals Possible Link to TrickBot Gang
Ransomware has become the number one cyber threat to organizations, making up nearly 25% of attacks IBM X-Force Incident Response remediated in 2020. Ransomware is making headlines on a regular…
ITG18: Operational Security Errors Continue to Plague Sizable Iranian Threat Group
This blog supplements a Black Hat USA 2021 talk given August 2021. IBM Security X-Force threat intelligence researchers continue to track the infrastructure and activity of a suspected Iranian threat…