Cybersecurity

Mitre ATT&CK News

Explore the latest news articles and reports about the Mitre Attack Framework, a curated knowledge base that helps network defenders learn exactly how networks are attacked. Discover everything about it and its place in the world of cybersecurity.

Cybersecurity

Top news of the week: 16.12.2021.

#Log4Shell
#SURGe
#log4jRCE
#threatdetection
#BazarLoader
#CobaltStrike
#VMware
#incidentresponse
#XDR
#infosec

Mitre Attack

@JohnLaTwC shared
On Dec 16, 2021
RT @Int2e_: Don't know what an Azure Run Command is? Neither did I when we first stumbled on an attacker abusing this during a recent IR case. We wrote a short blog on these and what to look for if you're writing detections for your Azure VMs. https://t.co/JF3zQxXUkJ
Open
Azure Run Command for Dummies

Azure Run Command for Dummies

Azure Run Commands The Azure Run Command feature enables administrators to run commands on Azure Windows or Linux virtual machines by leveraging the virtual machine agent. Create …

@daveherrald shared
On Dec 10, 2021
RT @meansec: Well, holy crap. This has been a Friday. #SURGe @splunk has posted a blog with early detections and hunting for #log4jRCE or #Log4Shell (depending on your hashtag of choice. This will be followed up with better code soon in our premium products: https://t.co/aGcZSx7SgW
Open
Log Jammin’- Detecting Log4j 2 RCE Using Splunk

Log Jammin’- Detecting Log4j 2 RCE Using Splunk

A serious remote code execution (RCE) vulnerability (CVE-2021-44228) in the popular open source Apache Log4j logging library poses a threat to thousands of applications and third-party ...

@DarkReading shared
On Dec 13, 2021
NIST Cyber-Resiliency Framework Extended to Include Critical Infrastructure Controls https://t.co/5CI64wPJN5 #NIST #infrastructure
Open
NIST Cyber-Resiliency Framework Extended to Include Critical Infrastructure Controls

NIST Cyber-Resiliency Framework Extended to Include Critical Infrastructure Controls

The latest NIST publication outlines how organizations can build systems that can anticipate, withstand, recover from, and adapt to cyberattacks.

@bry_campbell shared
On Dec 13, 2021
RT @TheDFIRReport: Diavol Ransomware ➡️Initial Access: Zip->ISO loading BazarLoader ➡️Discovery: Net, Ping, AdFind, Advanced IP Scanner, ShareFinder ➡️C2: #CobaltStrike & #BazarLoader ➡️Lateral Movement: RDP, AnyDesk ➡️Exfil: FileZilla, ufile ➡️Impact: Diavol ransomware https://t.co/JWZGF83nqu
Open
Diavol Ransomware

Diavol Ransomware

In this report, we observed threat actors deploy multiple Cobalt Strike DLL beacons, perform internal discovery using Windows utilities, execute lateral movement using AnyDesk and RDP, dump ...

@vmw_carbonblack shared
On Dec 10, 2021
RT @CSOonline: . @VMware launches VMware Carbon Black Cloud Managed Detection and Response, designed to help enterprises with understaffed SOCs fill the gaps arising from rapidly evolving threat landscapes. https://t.co/hSPC8qWPvi #VMware #threatdetection #incidentresponse
Open
VMware launches Carbon Black Cloud MDR to bolster SOC efficiency

VMware launches Carbon Black Cloud MDR to bolster SOC efficiency

VMware's Carbon Black Cloud Managed Detection and Response (MDR) is designed to help company security operations centers (SOCs) gain efficiency with improved threat advisory and containment.

@cybereason shared
On Dec 15, 2021
It. is. here. AI-driven Cybereason #XDR and #EDR solutions are now available on Google Cloud Marketplace https://t.co/gU4Ifkhwoc @googlecloud #infosec #cybersecurity
Open
AI-Driven Cybereason XDR and EDR Now Available on Google Cloud Marketplace

AI-Driven Cybereason XDR and EDR Now Available on Google Cloud Marketplace

Google Cloud customers can now protect their organizations from sophisticated cyberattacks with the availability of the Cybereason XDR and EDR solutions on the Google Cloud Marketplace...

@CrowdStrike shared
On Dec 14, 2021
🏆 @CrowdStrike Falcon detects 100% of attacks in new @selabsuk EDR test, winning highest rating of all vendors. Learn more about the worlds most tested next-gen endpoint protection platform: https://t.co/4WyGPkGmj8
Open
CrowdStrike Falcon Detects 100% of Attacks in New SE Labs EDR Test, Winning Highest Rating of All Vendors

CrowdStrike Falcon Detects 100% of Attacks in New SE Labs EDR Test, Winning Highest Rating of All Vendors

The world’s most tested next-gen endpoint protection platform receives AAA award from the prestigious SE Labs. Read more here!

@cybereason shared
On Dec 15, 2021
Interactive demo 🔉 see how the AI-driven Cybereason #XDR platform detects and prevents exploits that are leveraging the #Apache #Log4Shell vulnerability through a multilayered defense https://t.co/2panpqKqnI #cybersecurity #infosec
Open
How Cybereason Detects and Prevents Exploits Leveraging Log4Shell Vulnerability

How Cybereason Detects and Prevents Exploits Leveraging Log4Shell Vulnerability

In this interactive demo, see the AI-driven Cybereason XDR Platform detect and block an attacker attempting to compromise a Tomcat server with a Log4Shell exploit to deploy a malicious ...

Read more: Mitre Attack
weekly 16.12.2021
View archives
Back to home

Subscribe to Cybersecurity - Mitre ATT&CK.

Avoid an information overload and get the most trusted industry news hand-picked by the top Experts. Sign up for the weekly Cybersecurity - Mitre ATT&CK.
Privacy Policy

Sign up for the weekly Cybersecurity - Mitre ATT&CK newsletter

Never again miss anything or anyone that matter in Cybersecurity

Sign up and receive the Cybersecurity - Mitre ATT&CK weekly email newsletter directly to your inbox. Make more informed business decisions based on insight for the most trusted industry experts, faster.
Privacy Policy