Collaborate Disseminate
Purdue University and MITRE are combining their expertise and capabilities to form a new public-private partnership focusing on key areas of national safety and security. Purdue will join MITRE as one of its select academic vision partners. This strate… Continue reading Purdue University and MITRE form partnership to advance innovation and workforce development
Which tactics and techniques are cyber attackers favoring? vFeed has compiled a list of the Top 10 Most Used MITRE ATT&CK Tactics and Techniques to help security teams focus their defenses more effectively. MITRE ATT&CK helps understand attac… Continue reading Top 10 most used MITRE ATT&CK tactics and techniques
The MITRE adversarial tactics, techniques and common knowledge (ATT&CK) framework brings pooled knowledge from across the cyber defense community, including revealing what threat actors are up to and how best you can defend against them. Let’s take a look at what MITRE offers and how this framework goes hand-in-hand with developing a security operations center (SOC) […]
The post Unleash the Power of MITRE for a More Mature SOC appeared first on Security Intelligence.
Continue reading Unleash the Power of MITRE for a More Mature SOC
There’s a good reason everyone’s talking about MITRE ATT&CK: it’s an objective, third-party standard with which organizations can measure their own detection coverage, as well as the coverage provided by EDR solutions. Still, even while you apprec… Continue reading Three ways MITRE ATT&CK can improve your organizational security
MITRE named Gerald Gilbert, Ph.D., a MITRE Fellow to expand MITRE’s quantum science initiatives. MITRE Fellows are a select group of preeminent scientists in their fields who lead critically important programs. The MITRE Fellows program has a history o… Continue reading MITRE names Gerald Gilbert a MITRE Fellow
A popular method that organizations lean on to reduce their cybersecurity risks is marrying a popular tool that cyber pros consult when they analyze hacking groups — in a way they think everyone can use. The project to conjoin the National Institute of Standards and Technology’s cybersecurity framework and MITRE ATT&CK framework, announced Tuesday, comes with backing from big players: JPMorgan Chase, a nonprofit center operated by an offshoot of MITRE, the cybersecurity company AttackIQ and the nonprofit Center for Internet Security that’s perhaps best known for its work with state and local governments. The idea behind the mapping project is to harmonize the risk management sides of cyber with the threat intelligence side of cyber, via models that any organization can employ. Usually unifying those two sides would be something that only a large outfit, like the U.S. military or major investment banks, would be able to pull off, […]
The post Here comes the bride: New map matches threat intel to cyber defenses appeared first on CyberScoop.
Continue reading Here comes the bride: New map matches threat intel to cyber defenses
The number of vulnerability disclosures is back on track to reach or bypass 2019 as we head into 2021, according to Risk Based Security. The team aggregated 17,129 vulnerabilities disclosed during the first three quarters of 2020, marking a 4.6% gap wh… Continue reading 2020 to reach vulnerability disclosure levels similar to those in 2019
Article by Nathan King, Director, Cyberis
Vulnerability scoring has an important role in most enterprise threat and vulnerability management programmes because it provides multiple benefits to internal security teams when identifying any weaknesses. Ad… Continue reading The Dangers of Security Vulnerability Scoring Dependency
My question is on Cyber Threat Intelligence (CTI). I want to know the difference between Attack Patterns (as in MITRE CAPEC) and Tactics, Techniques and Procedures (as in MITRE ATT&CK). They both seem to describe the behaviour and modu… Continue reading What is the difference between ATT&CK and CAPEC?
My question is on Cyber Threat Intelligence (CTI). I want to know the difference between Attack Patterns (as in MITRE CAPEC) and Tactics, Techniques and Procedures (as in MITRE ATT&CK). They both seem to describe the behaviour and modu… Continue reading What is the difference between ATT&CK and CAPEC?