#IBM Security today released its annual X-Force Threat Intelligence Index finding that although ransomware's share of incidents declined only slightly (4 percentage points) from 2021 to 2022, defenders were more successful detecting and preventing ransomware. Despite this, attackers continued to innovate with the report showing the average time to complete a ransomware attack dropped from 2 months down to less than 4 days.

https://newsroom.ibm.com/2023-02-22-IBM-Report-Ransomware-Persisted-Despite-Improved-Detection-in-2022

#cybersecurity #infosec #ibmsecurity #ibmxforce #XForce #threatintelligenceindex #threatintel

Interesting post on IBM Security SecurityIntelligence blog about Synthetic Media-Based Social Engineering.

Long story short, media — sound, video, pictures and written words — are no longer reliable forms of authentication.

#cybersecurity #infosec #deepfake #ai #socialengineering #ibm #ibmsecurity

https://securityintelligence.com/articles/synthetic-media-new-social-engineering-threats/

Good read on how #IBM Security X-Force identified a novel technique employed by an attacker to introduce a command and control (C2) channel built upon #Discord channel messages.

#cybersecurity #infosec #ibmsecurity #ibmxforce

https://securityintelligence.com/posts/self-checkout-discord-c2/

:redhat:​ Red Hat Insights malware detection service is now generally available!

This #malware detection service is a monitoring and assessment tool that scans Red Hat Enterprise Linux (#RHEL) systems for the presence of malware, utilizing over 180 signatures of known #Linux malware provided in partnership with the #IBM X-Force Threat Intelligence team.

#cybersecurity #infosec #redhat #ibmxforce #xforce #ibmsecurity

https://www.redhat.com/en/blog/red-hat-insights-malware-detection-service-now-generally-available?linkId=197032696

#IBMSecurity commissioned a study from Morning Consult that surveyed over 1,100 cybersecurity incident responders across ten countries. Unsurprisingly, over two-thirds of respondents experienced daily stress or anxiety due to the pressures of responding to a cyber incident. Despite the challenges, responders are willing to take on the IR role because of their exemplary sense of duty.

But perhaps one of the underrated perks of working in incident response is the ability to tell outrageous true stories.

Read more about these exciting stories here ⬇️

#cybersecurity #infosec #incidentresponse #ibm

https://securityintelligence.com/articles/outrageous-stories-cyber-incident-responders/

Latest from @MikeElgan on SecurityIntelligence blog:

Twitter is the New Poster Child for Failing at Compliance

... In short, use Twitter as a perfect bad example. Make sure to properly staff and fund your compliance teams. Place direct and clear responsibility on qualified professionals. And get the whole organization on board.

#ibm #ibmsecurity #compliance #appsec #gdpr #ftc

https://securityintelligence.com/articles/twitter-compliance-failures-elon-musk/

A #Randori Recon integration for #QRadar #SOAR is now available on the #IBM App Exchange.

Integrating Randori Recon with QRadar SOAR empowers analysts with bi-directional synchronization between solutions, enabling queries of Randori Targets and the ability to create and update corresponding cases in QRadar SOAR.

#cybersecurity #infosec #ibmsecurity

https://community.ibm.com/community/user/security/blogs/nicholas-barrett/2022/12/21/now-available-randori-qradar-soar-integration

4 Most Common Cyberattack Patterns from 2022. Article on SecurityIntelligence.

Likely to continue in 2023...

1. #Ransomware
2. E-mail Compromise
3. Supply Chain Attacks
4. Attacks on Internet of Things (#IoT) Devices

#cybersecurity #infosec #IBMSecurity #IBM

https://securityintelligence.com/articles/most-common-cyberattack-patterns-2022/

"The Cybersecurity Takeaway from Twitter’s Verification Chaos", @MikeElgan's latest article on #IBMSecurity SecurityIntelligence blog. #cybersecurity #infosec

https://securityintelligence.com/articles/cybersecurity-twitter-verification-chaos/

"The Cybersecurity Takeaway from Twitter’s Verification Chaos", @MikeElgan's latest article on #IBMSecurity SecurityIntelligence blog

#cybersecurity #infosec

https://securityintelligence.com/articles/cybersecurity-twitter-verification-chaos/

In September 2022, #Microsoft patched an information disclosure vulnerability in SPNEGO NEGOEX (CVE-2022-37958).

On December 13, Microsoft reclassified the #vulnerability as “Critical” severity after #IBM Security X-Force Red Security Researcher Valentina Palmiotti (@chompie1337) discovered the vulnerability could allow attackers to remotely execute code (#RCE).

#IBMSecurity #XForce

https://securityintelligence.com/posts/critical-remote-code-execution-vulnerability-spnego-extended-negotiation-security-mechanism/

For anyone trying to get their heads wrapped around best practices for role management in the identity and access management space, watch this pretty comprehensive 9:00 minutes video from #IBM Distinguished Engineer Jeff Crume on the topic.

#iam #identitymanagement #identitygovernance #ibmsecurity #cybersecurity #infosec

https://youtu.be/5v4v-MPoEOs

Another threat group, the ‘Eternity Project’, offers a Malware-as-a-Service... service from a #Tor website and on their Telegram channel.

They sell a wide variety of #malware (for $90 to $490) in an organized fashion, including stealer, clipper, worm, miner, #ransomware and distributed-denial-of-service bot services.

#cybersecurity #security #infosec #ibmsecurity

https://securityintelligence.com/news/eternity-gang-ransomware-as-a-service-telegram/

📬 Laurance Dine: Cyberangriffe bringen IR-Teams ans Limit
#Hacking #Studie #Cyberangriffe #IBMSecurity #IncidentResponder #ITSecurity #LauranceDine #PsychischeGesundheit #XForce https://tarnkappe.info/studie/laurance-dine-cyberangriffe-bringen-ir-teams-ans-limit-257255.html

Remote Workers Pose New Security Risks - Organizations sent workers home during COVID-19 lockdown without adequate security preparation. more: https://threatpost.com/remote-workers-pose-new-security-risks/156817/ #personallyidentifiableinformation #morningconsult #mobiledevices #remoteworkers #stay-at-home #websecurity #ibmsecurity #passwords #thereport #covid-19 #lockdown #pandemic #security #laptops #pii