ATT&CK Goes to v11

Intelligence Failures of Lincoln’s Top Spies: What CTI Analysts Can Learn From the Civil War

Selena Larson Mar 29 ·9 min read Guest Post by ATT&CKcon 3.0 Keynote Speaker, Selena Larson Allan Pinkerton (Alexander Gardner — Library of Congress) At the onset of the Civil…

ATT&CK for Mobile: Reintroduction and 2022 Goals

Jason Ajmo ·Follow Feb 23 ·6 min read With the huge rise in critical work data on smartphones over the past couple of years, mobile security is more important than…

ATT&CK 2021 Roadmap

Amy L. RobertsonMar 16 · 9 min read A review of how we navigated 2020 and where we’re heading in 2021 With the monumental disruptions, challenges, and hybrid work environments…

Mitigating Abuse of Android Application Permissions and Special App Accesses

Michael PeckJan 26 · 7 min read ATT&CK® for Mobile is an ATT&CK matrix of adversary behavior against mobile devices (smartphones and tablets running the Android or iOS/iPadOS operating systems).…

In Pursuit of a Gestalt Visualization: Merging MITRE ATT&CK® for Enterprise and ICS to Communicate

Otis AlexanderSep 29, 2020 · 10 min read (Note: The content of this post is being released jointly with Mandiant. It is co-authored with Daniel Kapellmann Zafra, Keith Lunden, Nathan…

“ATT&CK with Sub-Techniques” is Now Just ATT&CK

Adam PenningtonJul 8, 2020 · 11 min read (Note: Much of the content in this post was consolidated and updated from previous posts written by Blake Strom with new content…