The non for profit MITRE Corporation announced last week the v10 of their ATT&CK framework that adds a new form of data sources and data source component objects. 🔎
It also updates data sources with refined techniques and assets to bring parity between Enterprise and ICS-related ones. 🤓
It also offers enhancements across almost all platforms, including macOS, Linux, Mobile, and Cloud, as explained by Amy Robertson, Alexia Crumpton, and Chris Ante in their release article.
For those not familiar, MITRE ATT&CK, MITRE Adversarial Tactics, Techniques, and Common Knowledge is a globally accessible knowledge base of adversary tactics and techniques based on real-world observations produced by MITRE. 📚
It provides a framework of a curated knowledge base and model for cyber adversary behaviour that reflects the various phases of an adversary's attack lifecycle and the platforms they are known to target in the Enterprise, the Government, the ICS, and the cybersecurity product and service community. 🎯
Are you already using MITRE ATT&CK for all your assets, including ICS, mobile and Cloud? 🤔