Ukrainian Police Nab Six Tied to CLOP Ransomware

Credit to Author: BrianKrebs| Date: Wed, 16 Jun 2021 14:42:42 +0000

Authorities in Ukraine this week charged six people alleged to have been part of the CLOP ransomware group, a cybercriminal gang said to have extorted more than half a billion dollars from victims. Some of CLOP’s victims this year alone include Stanford University Medical School, the University of California, and University of Maryland.

Read more

Why MITRE ATT&CK matters—Choosing alert quality over quantity

Credit to Author: Malwarebytes Labs| Date: Thu, 13 May 2021 14:25:49 +0000

MITRE Engenuity’s recent evaluation could make any business reconsider its cybersecurity strategy, but they shouldn’t leap to conclusions.

Categories: Malwarebytes news

Tags:

(Read more…)

The post Why MITRE ATT&CK matters—Choosing alert quality over quantity appeared first on Malwarebytes Labs.

Read more

Industry-wide partnership on threat-informed defense improves security for all

Credit to Author: Eric Avena| Date: Wed, 16 Sep 2020 16:00:39 +0000

MITRE Engenuity’s Center for Threat-Informed Defense has published a library of detailed plans for emulating the threat actor FIN6 (which Microsoft tracks as TAAL). Microsoft is proud to be part of this industry-wide collaborative project.

The post Industry-wide partnership on threat-informed defense improves security for all appeared first on Microsoft Security.

Read more

Blue teams helping red teams: A tale of a process crash, PowerShell, and the MITRE ATT&CK evaluation

Credit to Author: Eric Avena| Date: Thu, 11 Jun 2020 17:00:05 +0000

Inspired by MITRE’s transparency in publishing the payloads and tools used in the attack simulation, we’ll describe the mystery that is Step 19 and tell a story about how blue teams, once in a while, can share important learnings for red teams.

The post Blue teams helping red teams: A tale of a process crash, PowerShell, and the MITRE ATT&CK evaluation appeared first on Microsoft Security.

Read more

Trend Micro’s Top Ten MITRE Evaluation Considerations

Credit to Author: Trend Micro| Date: Tue, 28 Apr 2020 22:32:19 +0000

The introduction of the MITRE ATT&CK evaluations is a welcomed addition to the third-party testing arena. The ATT&CK framework, and the evaluations in particular, have gone such a long way in helping advance the security industry as a whole, and the individual security products serving the market. The insight garnered from these evaluations is incredibly…

The post Trend Micro’s Top Ten MITRE Evaluation Considerations appeared first on .

Read more

Getting ATT&CKed By A Cozy Bear And Being Really Happy About It: What MITRE Evaluations Are, and How To Read Them

Credit to Author: Greg Young (Vice President for Cybersecurity)| Date: Thu, 23 Apr 2020 18:37:23 +0000

Full disclosure: I am a security product testing nerd*.   I’ve been following the MITRE ATT&CK Framework for a while, and this week the results were released of the most recent evaluation using APT29 otherwise known as COZY BEAR. First, here’s a snapshot of the Trend eval results as I understand them (rounded down): 91.79%…

The post Getting ATT&CKed By A Cozy Bear And Being Really Happy About It: What MITRE Evaluations Are, and How To Read Them appeared first on .

Read more