How to improve threat detection in ICS environments

Written by CyberScoop Staff Feb 24, 2022 | CYBERSCOOP A challenge in industrial control systems (ICS) cybersecurity is the lack of detection and collection capability within most ICS environments. Security…

Defining ATT&CK Data Sources, Part II: Operationalizing the Methodology

Jose Luis RodriguezOct 20, 2020 · 9 min read In Part I of this two-part blog series, we reviewed the current state of the data sources and an initial approach…

Defining ATT&CK Data Sources, Part I: Enhancing the Current State

Jose Luis RodriguezSep 10, 2020 · 10 min readFigure 1: Example of Mapping of Process Data Source to Event Logs Discussion around ATT&CK often involves tactics, techniques, procedures, detections, and…