PacketNut; Confessions of an Enterprise Information Security Architect

A blog for Security Architects, CISOs and anyone else responsible for protecting their organisation's information assets

Useful Info

Home
Companies that interest me

Tuesday, 13 August 2019

MITRE ATT&CK

High level overview of the MITRE ATT&CK model by Exabeam.
https://www.exabeam.com/information-security/what-is-mitre-attck-an-explainer/

Posted by Tony Brown at 23:35 No comments:

Email This BlogThis!Share to Twitter Share to Facebook Share to Pinterest

Newer Posts Older Posts Home

Subscribe to: Posts (Atom)

Security News

The Hacker News

North Korea Exploited VPN Flaw to Hack South's Nuclear Research Institute
42 minutes ago
Feedspot Blog

Top 10 Christmas Forums, Discussions, Message Boards To Follow in 2021
54 minutes ago
The Register - Security

South Korea’s nuclear research agency breached by North Korea-affiliated cyberattackers, says malware analyst group
1 hour ago
Cybersecurity Insiders

Google asks users to be aware of Phishing Attacks on Google Drive
2 hours ago
Security Boulevard

TikTok Collecting Biometric Data, Peloton Bike+ Vulnerability, Nextdoor App Concerns
3 hours ago
Latest topics for ZDNet in Security

Labor Bill would force Aussie organisations to disclose when they pay ransoms
3 hours ago
ComputerWeekly: IT security

Best practices for secure printing
4 hours ago
Errata Security

When we'll get a 128-bit CPU
6 hours ago
Techdirt.

Funniest/Most Insightful Comments Of The Week At Techdirt
12 hours ago
Latest news and stories from BleepingComputer.com

New Windows 11 registry hacks to customize your device
14 hours ago
SecurityWeek RSS Feed

Hit by a Ransomware Attack? Your Payment May be Deductible
1 day ago
Troy Hunt

Weekly Update 248
2 days ago
Schneier on Security

Friday Squid Blogging: Video of Giant Squid Hunting Prey
2 days ago
Dark Reading:

Attackers Find New Way to Exploit Google Docs for Phishing
2 days ago
News – SC Media

Wegmans reports misconfigurations on two cloud databases
2 days ago
Latest Security Articles from ComputerworldUK

The future of work is hybrid and remote
2 days ago
Cybercrime Magazine

The Ultimate Zoom Hack Takes Home A Six-Figure Prize
2 days ago
Cybersecurity

Ransomware may be as big an issue as climate change, says Josh Brown
2 days ago
Security Intelligence

Data is Wealth: Data Security is Wealth Protection
2 days ago
Threatpost | The first stop for security news

What’s Making Your Company a Ransomware Sitting Duck
2 days ago
Graham Cluley

Repairmen suspected of installing ransomware on customers’ PCs. Arrests in South Korea
2 days ago
Light Reading:

Biden back in DC, but China still on his mind
2 days ago
Cisco Blog

Cisco Secure: Supporting NIST Cybersecurity Framework
2 days ago
Google Online Security Blog

Get ready for the 2021 Google CTF
2 days ago
Krebs on Security

First American Financial Pays Farcical $500K Fine
2 days ago
AlienVault Blogs

Risk-based security now more important than ever for Energy and Utilities!
2 days ago
Softpedia News / Security

Cybercriminals Partner Up and Set Common Targets
3 days ago
SearchSecurity: Security Wire Daily News

SolarWinds response team recounts early days of attack
3 days ago
Motherboard US - Hacking US

Bombshell Report Finds Phone Network Encryption Was Deliberately Weakened
3 days ago
IT SECURITY GURU

Biden says 16 sectors should be off limits to attack
3 days ago
Cybercrime | The Guardian

How remote work opened the floodgates to ransomware
3 days ago
CSO Online

5 biggest healthcare security threats for 2021
3 days ago
IBTimes.co.uk : Technology

Facebook AI software able to dig up origins of deepfake images
4 days ago
DDoS Attacks

A New Wave of DDoS Extortion Campaigns by Fancy Lazarus
4 days ago
Daniel Miessler

Reality and Meaning
5 days ago
EFF Press Releases

22 Rights Groups Tell PayPal and Venmo to Shape Up Policies on Account Closures
5 days ago
Hacker Combat - Cyber Security and Hacking News | HackerCombat

Honeywell Introduces Operational Technology Cybersecurity Service to Facilitate Monitoring and Response, and Boost Safety
6 days ago
Risky Business

Risky Biz Soap Box: Banks to embrace Yubikeys for customers
1 week ago
NCSC Site

Protective DNS for the private sector
1 week ago
Computer Business Review

Network transformation: The foundation for digital business
1 month ago
RSA Conference Blog

A WORD OF CAUTION: AVOID SCAMMERS CLAIMING TO HAVE THE RSAC ATTENDEE LIST
3 months ago
Bad Packets Report

Over 3,000 F5 BIG-IP endpoints vulnerable to CVE-2020-5902
11 months ago
Cybersecurity Zen

SecureNinja ▶︎ Live Instructor-Led Online Training
1 year ago
Ars Technica » Risk Assessment

What the newly released Checkra1n jailbreak means for iDevice security
1 year ago
US-CERT Tips

Privacy and Mobile Device Apps
1 year ago
Infosecurity Europe Blog

Infosecurity Magazine takes over Infosecurity North America 2018
2 years ago
CRN

WATCH: Digital Guardian Exec On How Its Move To The Cloud Benefits Partners
2 years ago
SecurityRoundTable.org

Why A ‘Cloud Architect’ Should Be on Your Hiring Agenda
3 years ago
WIRED » Threat Level

Feds Charge NSA Contractor Accused of Exposing Russian Hacking
4 years ago
Security | The Silicon Review

Is it true that internet has penetrated only to handful of the Indian population?!
4 years ago
Latest articles from SC Magazine UK

400% increase in POS malware variants across US Thanksgiving weekend
4 years ago
Blog - devsecops

DevSecOps is the Krav Maga of Security
4 years ago
Forbes - Security

Craig Brittain: Confessions Of An 'Accidental' Revenge Porn Pusher
6 years ago

Show 10 Show All

Vendors

Errata Security

When we'll get a 128-bit CPU
6 hours ago
Naked Security

Can *YOU* blow a PC speaker using only a Linux kernel driver?
2 days ago
Rapid7 Blog

Metasploit Wrap-Up
2 days ago
Imperva Cyber Security Blog

Infographic: How Do You Stop Bad Bots?
2 days ago
Cisco Blog » Security

Cisco Secure: Supporting NIST Cybersecurity Framework
2 days ago
We Live Security » Languages » English

Week in security with Tony Anscombe
2 days ago
SentinelOne

The Good, the Bad and the Ugly in Cybersecurity – Week 25
2 days ago
Heimdal Security Blog

Windows Patch Management: How It Works and Why It Helps
2 days ago
Malwarebytes Unpacked

Two Google plans that could make open source code more secure
2 days ago
CloudFlare

Cloudflare TV: Doing it Live, 1,000 Times and Counting
2 days ago
Check Point Blog

Real Users Weigh in on the Characteristics of a Good Next-Generation Firewall (NGFW)
2 days ago
AlienVault Blogs

Risk-based security now more important than ever for Energy and Utilities!
2 days ago
Centrify Cloud Service Status - Incident History

Centrify System Maintenance - Pod 8 Back-end Service Upgrade
3 days ago
Varonis Blog

Network Flow Monitoring Explained: NetFlow vs sFlow vs IPFIX
3 days ago
The Akamai Blog

Akamai Provides Prolexic DDoS Service Impact Update (Status: Resolved)
3 days ago
ThreatConnect | Enterprise Threat Intelligence Platform

ThreatConnect and Amazon S3 and EC2: Better Manage Cloud Infrastructure
3 days ago
Recorded Future

The Inside Story on RedFoxtrot: How Network Traffic Analysis Revealed Ties to Chinese Military
3 days ago
Tenable Blog

8 Active Directory Best Practices to Minimize Cybersecurity Risk
3 days ago
Darktrace Blog

Stopping phishing attacks in ‹ enter language ›
3 days ago
Darktrace Blog

Stopping phishing attacks in ‹ enter language ›
3 days ago
AWS Security Blog

Encrypt global data client-side with AWS KMS multi-Region keys
4 days ago
Threat Research

Smoking Out a DARKSIDE Affiliate’s Supply Chain Software Compromise
4 days ago
CyberArk

How Federal Agencies Can Secure Secrets in Automation Environments at Scale
5 days ago
Anomali Blog

Anomali Cyber Watch: TeamTNT Expand Its Cryptojacking Footprint, PuzzleMaker Attack with Chrome Zero-day, NoxPlayer Supply-Chain Attack Likely The Work of Gelsemium Hackers and More
5 days ago
Packet Pushers - Briefings In Brief

Tech Bytes: Digital Experience Management For Distributed Workforces (Sponsored)
6 days ago
blog.trendmicro.co.uk

How the UK’s education sector can tackle a new ransomware spike: Part I
6 days ago
Postmodern Security

Infosec Riot Grrrl Manifesto*
1 week ago
Palo Alto Networks Blog

AutoNation Improves Performance, Saves Millions With Prisma SD-WAN
1 week ago
Securosis Highlights

New Age Network Detection: Introduction
3 weeks ago
ClearSky Cybersecurity

Attributing CryptoCore Attacks Against Crypto Exchanges to LAZARUS (North Korea)
3 weeks ago
Carbon Black

VMware Carbon Black Delivers High-Fidelity Insight at Every Step of MITRE Engenuity ATT&CK® Evaluation
1 month ago
TaoSecurity

New Book! The Best of TaoSecurity Blog, Volume 4
2 months ago
CipherCloud

CipherCloud and Lookout Blaze a New Path Together – Redefining Security from Endpoint to Cloud
3 months ago
Fooling the Interpreter

CSP Bypass Guidelines
3 months ago
TrendLabs Security Intelligence Blog

Our New Blog
9 months ago
Inside The Threat Blog by Lancope

This feed has moved and will be deleted soon. Please update your subscription now.
11 months ago
Skybox Security Blog – Cybersecurity from The Skybox View

Salt Vulnerabilities Exploited with Targeted Cryptomining Attack on DigiCert
1 year ago
Zscaler Research

Frenchy – Shellcode in the Wild
1 year ago
Arbor Networks Threat Intelligence

Emotet - What's Changed?
1 year ago
Cisco Blog » Threat Research

How Adversaries Use Politics for Compromise
1 year ago
Preempt Blog

Why Insider Threat Denial is Everyone’s Problem
1 year ago
Network Security Blog

Lucky Break
2 years ago
Threat Intelligence

Lojack Becomes a Double-Agent
3 years ago
Fortinet Blog

Securing the Network: What Three Key Verticals Require
3 years ago
Cyphort

Equifax Breach: The News We All Dreaded to Hear.
3 years ago
Speaking of Security - The RSA Blog and Podcast

A Security Decision – Build or Buy
3 years ago
Metasploit

Metasploit Wrapup
3 years ago
Threat Geek

Reducing Detection from Months to Minutes: Detecting Credentials in the Clear
4 years ago
Lockheed Martin Cybersecurity Blog

How Threat Intelligence Can Increase an Organization’s Cybersecurity Maturity
4 years ago
iSIGHT Partners

ThreatScape Media Highlights Update – Week Of June 8th
5 years ago
Liquidmatrix Security Digest

Hello world!
5 years ago
LogRhythm: The Dialog - The Security Intelligence Company

Getting Started with Threat Intelligence
5 years ago
IBM Internet Security Systems Internet Threat Information

Multiple Adobe Flash Player code execution vulnerabilities
6 years ago
Our Blog | Core Security
Comments on: The Top 10 AlgoSec Blog Posts From 2018
Farsight Security Blog
Trustwave Newsroom
Cylance Blog

Show 10 Show All

Blog Archive

► 2020 (2)
- ► May (2)

▼ 2019 (35)
- ► December (2)
- ► November (2)
- ► October (6)
- ► September (5)
- ▼ August (1)
  - MITRE ATT&CK
- ► June (1)
- ► February (4)
- ► January (14)

► 2018 (4)
- ► December (2)
- ► September (1)
- ► April (1)

► 2017 (6)
- ► August (5)
- ► July (1)

► 2016 (1)
- ► January (1)

► 2015 (4)
- ► September (4)

► 2013 (3)
- ► April (1)
- ► March (1)
- ► February (1)

About Me

Tony Brown: Enterprise Security Solutions Architect at global service provider. CCIE #8767. CISSP. Chartered Engineer. MSc. in Information Security. CCDE 2011:6 Chartered IT Professional. Member of the Institute of Information Security Professionals. Blah blah blah

View my complete profile

Awesome Inc. theme. Powered by Blogger.