Collaborate Disseminate
I was reading a recent report about an APT and jumped into this Technique:
https://attack.mitre.org/techniques/T1203/
This technique is called:
Exploitation for Client Execution
And that might match with what a macro is. However, the des… Continue reading Why does Mitre T1203 technique includes macros as software vulnerabilities?
MITRE named Dana (Keoki) Jackson as senior vice president and general manager, MITRE National Security Sector, where he will serve as a catalyst for accelerating change in how our nation addresses its greatest national security challenges and drive sol… Continue reading MITRE names Dana Jackson as senior VP and GM, MITRE National Security
DTEX Systems announced enhancements to DTEX InTERCEPT for critical infrastructure entities – a workforce cybersecurity solution specifically created to address the user activity monitoring (UAM) requirements of public and private oil and gas, electric,… Continue reading DTEX InTERCEPT delivers advanced UAM and workforce behavioral awareness capabilities
I’am using the Mitre ATT&CK CTI for ICS and I need to get all the assets
shown in this page
How can I get them through their TAXII server?
Here is a little snippet of code interacting with the CTI.
from taxii2client.v20 import Server, … Continue reading Mitre ATT&CK for ICS: how to get the list of assets?
Sysdig announced the addition of unified cloud and container security with the launch of continuous cloud security posture management (CSPM). Threat research conducted by Sysdig shows that having a single view across cloud, workloads, and containers sp… Continue reading Sysdig introduces unified cloud and container security with the launch of CSPM
Argus Cyber Security has collaborated with Microsoft Azure IoT and joined the Microsoft partner network to provide vehicle manufacturers the ability to monitor, detect, and mitigate attacks in the cloud. Argus cyber security suite, integrated with Azur… Continue reading Argus collaborates with Microsoft to provide a cloud security solution to vehicle manufacturers
McAfee announced the general availability of McAfee MVISION Cloud Native Application Protection Platform (CNAPP), a new security service designed to secure cloud native applications. MVISION CNAPP delivers consistent data protection, threat prevention,… Continue reading McAfee unveils MVISION CNAPP, a new security service designed to secure cloud native applications
AttackIQ announced a series of technology innovations to the AttackIQ Informed Defense Architecture (AIDA) that allow cybersecurity teams to better test their people, processes, and defensive technologies against advanced, multi-stage attack campaigns…. Continue reading AttackIQ platform automates the validation of AI and ML-based security technologies
MITRE Engenuity will assess commercial cybersecurity products’ ability to detect the threat posed by the groups commonly known as Sandworm and Wizard Spider, both of whom have used data encryption as a key element of their attacks. Applications for eva… Continue reading MITRE Engenuity to assess commercial cybersecurity products’ ability to detect threats
After SolarWinds, organizations need visibility into their security program effectiveness against real world threats. Automated adversary emulations can help meet that need. By generating real data about how your security program performs against menuP… Continue reading In partnership with MITRE Engenuity’s Center for Threat-Informed Defense, AttackIQ launches new automated adversary emulation plan for menuPass