Endpoint Security

What is a ZERO DAY, REALLY?

What is a ZERO DAY, REALLY? What is a zero-day, this can often confuse many as the term is used to describe zero-day exploits, zero-day attacks, zero-day malware and vulnerabilities. We’ve prepared this infographic to address any questions. The term “zero day” has come to describe one thing: A vulnerability or an attack vector that is known only to the attackers, so it can work without interruption from the defenders. You can think about it is a flaw in a piece of software, or even sometimes hardware. Typical Lifecycle, of a Zero Day Responsible Disclosure What is Not A Zero Day In-the-Wild, Zero Day Attacks Number of Zero Day by …

What is a ZERO DAY, REALLY? Read More »

What is a Zero-Day

Mitre Adds ICS-Specific Techniques To ATT&CK Framework

#MITRE has released a version of its ATT&CK knowledgebase covering tactics and techniques used in attacks against industrial control systems. MITRE’s ATT&CK, which stands for Adversarial Tactics, Techniques and Common Knowledge, is a framework widely used by cybersecurity professionals to check whether their defenses are enough to detect and block attacks. The first ATT&CK model was released in 2013 with a focus on Microsoft Windows. Since then, it has expanded to include Linux, Mac OS, and cloud platforms. The matrix of tactics and techniques describe how attackers break into and move within systems, from initial access and exfiltration. By breaking out different tactics into specific categories, defenders can detect and …

Mitre Adds ICS-Specific Techniques To ATT&CK Framework Read More »

MITRE ATT&CK FRAMEWORK
Scroll to Top
error: