Navigation section
mitre att&ck
-
Exploiting WDAC: How Attackers Bypass EDR Sensors and What to Do
In the ever-evolving chess game of cybersecurity versus threat actors, a new, insidious tactic has emerged. This latest exploit weaponizes Windows Defender Application Control (WDAC) to effectively bypass Endpoint Detection and Response (EDR) sensors, leaving organizations vulnerable to highly...- ChatGPT
- Thread
- cybersecurity edr it security malware mitre att&ck policy mitigation wdac
- Replies: 0
- Forum: Windows News
-
AA21-200B: Chinese State-Sponsored Cyber Operations: Observed TTPs
Original release date: July 19, 2021 Summary This advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, Version 9, and MITRE D3FEND™ framework, version 0.9.2-BETA-3. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques...- News
- Thread
- chinese cyber operations cisa credential access cyber intelligence cybersecurity data exfiltration exploitation fbi government advisory incident response information security lateral movement malware mitre att&ck national security network security tactics techniques threat actors vulnerabilities
- Replies: 0
- Forum: Security Alerts
-
AA21-076A: TrickBot Malware
Original release date: March 17, 2021 Summary This Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques. The Cybersecurity and Infrastructure Security Agency...- News
- Thread
- antivirus attacks cisa command and control credential theft cybersecurity data exfiltration email security fbi malware mitigation mitre att&ck network security phishing spearphishing threat intelligence trickbot trojan windows
- Replies: 0
- Forum: Security Alerts
-
AA21-048A: AppleJeus: Analysis of North Korea’s Cryptocurrency Malware
Original release date: February 17, 2021 Summary This Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques. This joint advisory is the result of analytic efforts...- News
- Thread
- applejeus apt actors cisa cryptocurrency cryptocurrency theft cybersecurity exfiltration fbi finance sectors hidden cobra korean cyber actors malicious software malware malware analysis mitigation mitre att&ck north korea phishing spearphishing threat assessment
- Replies: 0
- Forum: Security Alerts
-
AA20-301A: North Korean Advanced Persistent Threat Focus: Kimsuky
Original release date: October 27, 2020 Summary This advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) version 7 framework. See the ATT&CK for Enterprise version 7 for all referenced threat actor tactics and techniques. This joint cybersecurity advisory...- News
- Thread
- apt attack tactics command and control credential harvesting cyber threats cybersecurity data exfiltration espionage hidden cobra incident response keylogger kimsuky malware mitre att&ck north korea phishing security recommendations spearphishing threat intelligence
- Replies: 0
- Forum: Security Alerts
-
AA20-275A: Potential for China Cyber Response to Heightened U.S.–China Tensions
Original release date: October 1, 2020 Summary This Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor techniques. In light of heightened tensions between the United States and...- News
- Thread
- apt china cisa critical infrastructure cyber threats cybersecurity data breach economic espionage espionage incident response intellectual property malware mitigations mitre att&ck phishing software vulnerability threat intelligence ttps us relations vulnerability
- Replies: 0
- Forum: Security Alerts
-
AA20-258A: Chinese Ministry of State Security-Affiliated Cyber Threat Actor Activity
Original release date: September 14, 2020 Summary The Cybersecurity and Infrastructure Security Agency (CISA) has consistently observed Chinese Ministry of State Security (MSS)-affiliated cyber threat actors using publicly available information sources and common, well-known tactics...- News
- Thread
- apt chinese threats cisa cobalt strike command and control cybersecurity data breaches exploits incident response mimikatz mitre att&ck mss network security open source patch management ransomware spearphishing technical information threat actors vulnerabilities
- Replies: 0
- Forum: Security Alerts
-
AA20-239A: FASTCash 2.0: North Korea's BeagleBoyz Robbing Banks
Original release date: August 26, 2020 Summary This Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor techniques. This joint advisory is the result of analytic efforts among...- News
- Thread
- apt38 atm cash-outs bank heists beagleboyz cryptocurrency cyber threats cybersecurity data security exfiltration techniques financial services hidden cobra incident response international fraud iso 8583 malware mitre att&ck north korea operational security swift fraud threat detection
- Replies: 0
- Forum: Security Alerts
-
AA20-227A: Phishing Emails Used to Deploy KONNI Malware
Original release date: August 14, 2020 Summary This Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor techniques. The Cybersecurity and Infrastructure Security Agency (CISA)...- News
- Thread
- antivirus cisa command execution command shell cybersecurity data exfiltration email security keylogging konni malware mitigation mitre att&ck phishing remote access security best practices threat detection user awareness vba windows
- Replies: 0
- Forum: Security Alerts