BACK TO RESOURCES CENTER
Select a category to see more related content
MITRE Engage is a framework that systematizes adversary engagement. MITRE Engage replaces the MITRE Shield knowledge base, focusing on the areas of denial, deception, and adversary engagement.
If you have been following our blog, you already know that we are big fans of the MITRE ATT&CK framework. ATT&CK has become the de-facto framework for describing attacker tactics, techniques and procedures (TTPs).
The Lapsus$ hacking group has targeted (and successfully breached) a number of high-profile technology groups. It first gained the spotlight for a ransomware attack against the Brazilian Ministry of Health at the end of 2021, and has been quite busy since, targeting high-profile technology companies.
Threat intel is broken. As we’ve spoken about before, generic threat intel wastes a lot of time. It’s not efficient, and often it’s not even effective.
Profiling adversaries is a common strategy in the world of crime, but it can also apply to cyber criminals. With a good criminal profile, you’re building a card that has the tools, techniques and procedures that an adversary is using.