threat-mitigation – Page 3 – WindowsTechs.com

Microsoft Threat Model – Merging all 3 templates

Posted on December 5, 2020 by Bob_Lazar

So I’ve been trying to merge all 3 templates provided by MS in the Threat Modelling tool to benefit from a number of vital components scattered across the Default, Azure and Medical template. Unfortunately a number of errors were encounter… Continue reading Microsoft Threat Model – Merging all 3 templates→

Is server side CORS protection enough to mitigate CSRF attacks against stateless APIs?

Posted on November 28, 2020 by codependent

Assume an Angular SPA application on www.example.com that works invoking an API over that same domain www.example.com/api/…
The Angular app gets a session cookie and sends it in each API call.
The usual CSRF attack would try to execute a… Continue reading Is server side CORS protection enough to mitigate CSRF attacks against stateless APIs?→

What is the difference between ATT&CK and CAPEC?

Posted on November 5, 2020 by JacopoStanchi

My question is on Cyber Threat Intelligence (CTI). I want to know the difference between Attack Patterns (as in MITRE CAPEC) and Tactics, Techniques and Procedures (as in MITRE ATT&CK). They both seem to describe the behaviour and modu… Continue reading What is the difference between ATT&CK and CAPEC?→

What is the difference between ATT&CK and CAPEC?

Posted on November 5, 2020 by JacopoStanchi

Are security controls themselves considered assets (e.g., cryptographic keys)

Posted on September 18, 2020 by smoothware

Looking at a plain system (there are no security controls implemented yet), we need to think about its functions and derive appropriate assets which we’d like to protect in order to ensure the system continues to function as intended (also… Continue reading Are security controls themselves considered assets (e.g., cryptographic keys)→

Is Power Failure an Environmental or Structural Threat?

Posted on September 15, 2020 by talkinggoat

According to the CySA SYBEX book, in chapter 1, power failures are listed as both environmental threats and structural threats… but which one is it?
According to the book:

Environment threats occur when natural or man-made disasters occ… Continue reading Is Power Failure an Environmental or Structural Threat?→

MITRE ATT&CK ICS Machine readable

Posted on September 15, 2020 by giudaballerino

Could you please help me in finding a repository for MITRE ATT&CK ICS? I was wondering if the matrix, along with labels, assets and tactics was available smewhere online, perhaps in a STIX format as they did for ATT&CK Mobile, Ente… Continue reading MITRE ATT&CK ICS Machine readable→

Best material for a faraday enclosure [closed]

Posted on September 9, 2020 by McWayWeb

I am having an issue with someone directly below me compromising my machines by tracking me with RF signals. I am looking for the most efficient way to set up a faraday enclosure to prevent this from continuing to happen.
Initially I looke… Continue reading Best material for a faraday enclosure [closed]→

What is the difference between "local" and "Adjacent" threat agents?

Posted on September 1, 2020 by kudlatiger

I am using CVSS to do the vulnerability assessment for my project.
As per documentation here is the definition of local and adjacent

Adjacent (A) The vulnerable component is bound to the network stack, but the attack is limited at the p… Continue reading What is the difference between "local" and "Adjacent" threat agents?→

How to monitor the internet at large for threats to your organization?

Posted on August 13, 2020 by Stephan

What are approaches for monitoring cyber threats “outside” of the organisation, such as data like account passwords, credit cards, company data for sale, etc?
While there are services for monitoring account credential availability with ema… Continue reading How to monitor the internet at large for threats to your organization?→