ATT&CK

Why I Chose to Join AttackIQ as a Senior Advisor

Why I Chose to Join AttackIQ as a Senior Advisor

| | ATT&CK, Center for Threat-Informed Defense, CTEM, CTID, Insights & Perspectives, MITRE, threat-informed-defense
After 30 years in cyber defense and research, I joined AttackIQ to bring clarity and prioritize what truly matters in security. The post Why I Chose to Join AttackIQ as a Senior ...
AttackIQ

Insights from the DeepSeek Malicious Software Package Incident: Why Software Supply Chain Security Matters in Global AI Technology Competition

| | AI, AI data, AI Security, api, artificial intelligentce, ATT&CK, Blog, China AI, DeepSeek, NSFOCUS, python, supply chain
Background With the widespread application of AI technology, software supply chains are facing more complex and diverse security threats. Since January 2025, DeepSeek, as an emerging force in China’s AI industry, has ...
NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.
Malicious Life Podcast: Inside the MITRE ATT&CK Framework

Malicious Life Podcast: Inside the MITRE ATT&CK Framework

| | Advanced persistent threat, APT, ATT&CK, EDR, Endpoint Controls, endpoint detection and response, Endpoint Protection Platform, EPP, Infosec, Malicious Life, MITRE ATT&CK Framework, mitreattack, Network Security, Podcast, PodcastsCat, security, Unified Endpoint Security
In some ways, cybersecurity is like art, but that’s not a good thing… The MITRE ATT&CK framework aims to make sense of the collective knowledge of the security community and share that ...
Blog
Кіберполіція викрила хакерське угруповання у розповсюдженні вірусу-шифрувальника

Ukrainian Police Nab Six Tied to CLOP Ransomware

| | Accellion, ATT&CK, Babuk, clop, Darkside, File Transfer Appliance, Intel 471, Jones Day, Krogers, MITRE, Ne'er-Do-Well News, Qualys, Ransomware, SingTel, Stanford University Medical School, University of Maryland and the University of California
Authorities in Ukraine this week charged six people alleged to have been part of the CLOP ransomware group, a cybercriminal gang said to have extorted more than half a billion dollars from victims ...
Krebs on Security

5 Things to Do with MITRE ATT&CK – Tips and Tricks Special

| | ATT&CK, framework, MITRE ATT&CK, MITRE Framework, Top Tips
MITRE ATT&CK stands for MITRE Adversarial Tactics, Techniques and Common Knowledge. It’s a curated knowledge base of adversarial behavior based on real-world observation of APT campaigns. The original impetus for the project ...
The State of Security

DARK COMMERCE: parallel economy provides easy on-ramp for would-be cybercriminals

| | ATT&CK, Blog, Malware, research, Threat Context, Threat Intelligence
The cybercriminal industry is evolving, with a growing shadow economy that trades goods and services in much the same way as the legitimate cybersecurity sector. Today we publish a new report and ...
Blueliv

The MITRE ATT&CK Framework: Impact

| | ATT&CK, Featured Articles, Impact, MITRE, MITRE Framework
Not all attackers are trying to exfiltrate data. In security, we’re all familiar with CIA triad—confidentiality, availability, and integrity. While Exfiltration describes adversarial behavior with the goal of violating confidentiality, attackers may ...
The State of Security
OilRig / APT34 profile

TOP 5 ATT&CK techniques used by Threat Actors tied to Iran

| | ATT&CK, Iran, research, threat actors, Threat Context, Threat Intelligence
On the 3rd of January 2020, the Iranian Major General Qasem Soleimani was killed in a US drone strike ordered by President Donald Trump at Baghdad International Airport. Since then, popular demonstrations ...
Blueliv

ATT&CK Structure Part II: From Taxonomy to Ontology

| | ATT&CK, MITRE, MITRE Framework, onotology
In Part I, I described some structural problems in MITRE’s ATT&CK adversarial behavior framework. We looked at a couple of examples of techniques that vary greatly in terms of abstraction as well ...
The State of Security
Figure 1 – Monero’s value in USD from December 2018 to June 2019, source - CoinGecko.com

Cryptojacking: An Unwanted Guest

| | ATT&CK, backdoor, Bromium Labs, coin miner, coinminer, crypojacking, Cryptojacking, CVE-2017-8464, doublepulsar, EquationDrug, EquationGroup, EternalBlue, ETERNALCHAMPION, EternalRomance, Exploit, Malware, masscan, Mimikatz, MITRE, Monero, nsa, ShadowBrokers, SmbTouch, SMBv1, T1031, T1035, T1050, T1053, T1058, T1065, T1089, T1094, T1095, T1105, T1107, T1112, T1128, T1129, TA0001, TA0002, TA0003, TA0004, TA0005, TA0006, TA0007, TA0008, TA0009, TA0010, TA0011, TA0040, techniques, threats, trojan, Winpcap, XMR
We analyse a cryptojacking attack that mines the Monero cryptocurrency. The value of Monero in US dollars has more than doubled over the first half of 2019, from $46 to $98. The ...
Bromium
Load more