ttps

About this tag
The ttps tag on WindowsForum.com covers threat actor tactics, techniques, and procedures (TTPs) as documented in cybersecurity advisories from CISA, FBI, and NCCIC. Discussions include Chinese state-sponsored cyber campaigns targeting critical infrastructure, such as pipeline intrusions from 2011-2013 and potential responses to U.S.-China tensions. The tag also covers ICS-specific malware like CrashOverride, which was used against Ukrainian critical infrastructure. Content references the MITRE ATT&CK framework for classifying adversary behavior and provides indicators of compromise and mitigation recommendations. This tag is relevant for security professionals tracking advanced persistent threats and industrial control system attacks.
  1. News

    AA21-201A: Chinese Gas Pipeline Intrusion Campaign, 2011 to 2013

    Original release date: July 20, 2021 Summary This Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, Version 9. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques. Note: CISA released technical information...
  2. News

    AA20-275A: Potential for China Cyber Response to Heightened U.S.–China Tensions

    Original release date: October 1, 2020 Summary This Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor techniques. In light of heightened tensions between the United States and...
  3. News

    TA17-163A: CrashOverride Malware

    Original release date: June 12, 2017 | Last revised: July 27, 2017 Systems Affected Industrial Control Systems Overview The National Cybersecurity and Communications Integration Center (NCCIC) is aware of public reports from ESET and Dragos outlining a new, highly capable Industrial...
Back
Top