MITRE ATT&CK Archives

Detecting Insider Risk and Credential Abuse: Real-Time Security Intelligence with Seceon aiSIEM

Aniket Gurao | April 9, 2026 | aiSIEM, MITRE ATT&CK, SOC, Threat, Uncategorized

Executive Overview As organizations continue to strengthen external defenses, attackers are increasingly shifting toward identity-based attacks and insider vectors. Compromised credentials, unauthorized privilege escalation, and repeated authentication failures are now among the ...

Seceon Inc

MITRE ATT&CK v19 Drops April 28: How to Prepare Your SOC for the Defense Evasion Split

Shriram Sharma | April 6, 2026 | ATT&CK v19, Cybersecurity, detection-engineering, MITRE ATT&CK, threat detection

MITRE ATT&CK v19: What the Defense Evasion Split Means for Your SOC What’s Changing in ATT&CK v19 MITRE ATT&CK v19 drops April 28, 2026. The biggest change: Defense Evasion (TA0005), the framework’s ...

D3 Security

A graphic visualization of Morpheus AI SOC's architecture

6 Minutes and a Prayer: The Math Your SOC Doesn’t Want You to See

Shriram Sharma | March 4, 2026 | AI-Autonomous SOC, Alert Fatigue, alert triage, attack path discovery, Autonomous SOC, CISO, cybersecurity workforce shortage, MITRE ATT&CK, Morpheus AI, security operations, SOAR, SOC Analyst Burnout, SOC Operations, threat detection

Your SOC can't triage every alert — the math proves it. See why 75% of alerts go uninvestigated and how AI-autonomous triage closes the gap. The post 6 Minutes and a Prayer: ...

D3 Security

What to Know About the Notepad++ Supply-Chain Attack

Flashpoint | February 26, 2026 | MITRE ATT&CK, Notepad++, Vulnerabilities, Vulnerability Management

The cybersecurity community is still grappling with a sobering realization: one of the most ubiquitous tools in the developer’s toolkit, Notepad++, was hiding a critical vulnerability for over six months. The post ...

Threat Intelligence Blog | Flashpoint

Inside Real-World SOC Detections: A Practical View of Modern Attack Patterns

Aniket Gurao | January 29, 2026 | MITRE ATT&CK, SOC, Uncategorized

Executive Overview Modern cyberattacks rarely appear as a single loud event. Instead, they unfold as low-and-slow sequences across endpoints, networks, and identity platforms. Attackers blend into normal enterprise activity, using legitimate tools, ...

Seceon Inc

From Alerts to Adversaries: Turning Real-World Attack Signals into Actionable Defense

Smit Kadakia | January 27, 2026 | MITRE ATT&CK, SOC, UEBA, Uncategorized

Introduction Modern cyber attacks are no longer isolated events. They are continuous, industrialized campaigns that blend automation, living-off-the-land techniques, and multi-stage attack chains. Ransomware-as-a-service groups, credential-harvesting operations, and nation-state adversaries now operate ...

Seceon Inc

Attackers Don’t Guess and Defenders Shouldn’t Either

Jon Baker | January 8, 2026 | continuous threat exposure management, Cyber Risk Management, MITRE ATT&CK, security validation, threat-informed-defense

As environments become more complex and grow, the instinctive response has been to add more tools. Organizations now manage an average of 45 cybersecurity products, which gives the impression of broad protection ...

Security Boulevard

A slide from Kat Self's presentation at ATT&CKCon on the impending deprecation of the Defense Evasion tactic.

MITRE ATT&CK is Deprecating a Tactic: 3 Takeaways from the “Defense Evasion” Break-up

Shriram Sharma | October 21, 2025 | attck v18, Defense Evasion, impair defenses, MITRE ATT&CK, MITRE ATTACK, mitre attackcon, Security Framework, SOC Operations, stealth tactic, TA0005, threat detection

MITRE ATT&CK v19 is deprecating Defense Evasion (TA0005). Learn about the new Stealth and Impair Defenses tactics and what SOC teams need to do next. The post MITRE ATT&CK is Deprecating a ...

D3 Security

The Future of Defensible Security: From Reactive Playbooks to Attack-Pattern-Aware Autonomous Response

Alex MacLachlan | September 10, 2025 | attack pattern recognition, autonomous response, Autonomous SOC, Cyber threat intelligence (CTI), defensible security, Incident Response, MITRE ATT&CK, Security Automation, SOAR, SOC, threat-informed-defense

Why static automation isn’t enough—and what real-world adversary data tells us about how the next-gen SOC must evolve. The post The Future of Defensible Security: From Reactive Playbooks to Attack-Pattern-Aware Autonomous Response ...

D3 Security

Application Layer Attack Investigations in Minutes | Sumo Logic and Contrast Security

Maarten Buis | July 31, 2025 | Application Detection and Response (ADR), Application Layer Security, Application Security (AppSec), MITRE ATT&CK, Real Time Threat Detection, SIEM Integration, sql injection

For a security analyst, the day begins and ends in the Sumo Logic Cloud SIEM. It’s the central hub for unifying security and observability data, designed to turn a firehose of enterprise-wide ...

AppSec Observer

MITRE ATT&CK

Detecting Insider Risk and Credential Abuse: Real-Time Security Intelligence with Seceon aiSIEM

MITRE ATT&CK v19 Drops April 28: How to Prepare Your SOC for the Defense Evasion Split

6 Minutes and a Prayer: The Math Your SOC Doesn’t Want You to See

What to Know About the Notepad++ Supply-Chain Attack

Inside Real-World SOC Detections: A Practical View of Modern Attack Patterns

From Alerts to Adversaries: Turning Real-World Attack Signals into Actionable Defense

Attackers Don’t Guess and Defenders Shouldn’t Either

MITRE ATT&CK is Deprecating a Tactic: 3 Takeaways from the “Defense Evasion” Break-up

The Future of Defensible Security: From Reactive Playbooks to Attack-Pattern-Aware Autonomous Response

Application Layer Attack Investigations in Minutes | Sumo Logic and Contrast Security

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On