Collaborate Disseminate
I was doing the MITRE ATT&CK SOC Assessment course and had a question about the right assessment of techniques and sub-techniques.
The sub-technique that we want to assess is "Application or System Exploitation"(ID: T1499.004… Continue reading How do we indicate if a sub-techniques or techniques have a low or high detection confidence via MITRE ATT&CK?
Picus Security announced the release of its report which is a comprehensive analysis of attacker behavior and highlights the top 10 most widely seen attack techniques over the last 12 months. In compiling its research, more than 200,000 malware samples… Continue reading Malware variants in 2021: Harder to detect and respond to
Palo Alto Networks announced its Cortex eXtended Managed Detection and Response (XMDR) Partner Specialization to help customers detect, investigate and respond to cyberthreats across endpoint, network and cloud assets. Building on the demand for Palo A… Continue reading Palo Alto Networks Cortex XMDR Specialization empowers customers’ security operations
Carrier has become a Common Vulnerabilities and Exposures (CVE) Numbering Authority (CNA). This designation allows Carrier to provide customers greater transparency and proactive awareness of vulnerabilities and aligns with the company’s commitment to … Continue reading Carrier strengthens cybersecurity program with CVE Numbering Authority
NETMONASTERY NSPL announced its partnership with SecurityHQ, delivering engineering-led solutions to clients around the world. By combining dedicated security experts, technology, and processes, SecurityHQ clients receive an enterprise grade experience… Continue reading NETMONASTERY partners with SecurityHQ to deliver cyber threat detection solutions for enterprises
MITRE Corporation has released the tenth version of ATT&CK, its globally accessible (and free!) knowledge base of cyber adversary tactics and techniques based on real-world observations. Version ten comes with new Data Source objects, new and chan… Continue reading Released: MITRE ATT&CK v10
Graylog, a global provider of next-generation log management and SIEM solutions, is announcing Graylog Security. Designed to overcome legacy Security Information & Event Management (SIEM) challenges, Graylog’s scalable, flexible cybersecurity platf… Continue reading Graylog Security provides security teams with ML-based anomaly detection solutions
BAE Systems has joined the Center for Threat-Informed Defense (Center), operated by MITRE Engenuity, as a research sponsor to help the organization with its work to develop resources that protect against cyber-attacks. The Center was launched in 2019 i… Continue reading BAE Systems joins Center for Threat-Informed Defense to prevent and detect cyberattacks
SOC Prime announced that it closed $11M in Series A funding led by DNX Ventures, with participation from Streamlined Ventures and Rembrandt Venture Partners. The company will use the funding to scale and accelerate the adoption of the threat detection … Continue reading SOC Prime raises $11M to accelerate the adoption of the threat detection marketplace
ReliaQuest announced two new capabilities within GreyMatter, its cloud-native open XDR platform: Security Model Index, and Verify. Now with ReliaQuest GreyMatter, organizations can deliver cyber risk metrics, test and validate security controls across … Continue reading ReliaQuest releases two capabilities within its XDR platform to improve security operation efficacies