MITRE Risk Model Manager Platform
MITRE has released a cloud-based prototype platform called Risk Model Manager for its new System of Trust (SoT) framework that defines and quantifies risks and cybersecurity concerns for the supply…
NIST CSF Getting a Major Revamp Soon
The US NIST is about to bring significant changes to its Cybersecurity Framework (CSF) – seen as the biggest review in the last five years. The initial version is published…
Threat Modelling With PASTA
Threat modelling is a proactive approach to evaluating the threats your business faces, providing insights and evaluations of risks and mitigation priorities. It is a process which identifies, evaluates, and…
Air-Gapped Framework Malvertised !
In the first half of 2020, four malicious frameworks designed to attack air-gapped networks were detected, bringing the total number of such toolkits to 17 and offering adversaries a pathway…
Posted inSecurity
MITRE ATT&CK V🔟
MITRE Corporation has released the tenth version of ATT&CK, its globally accessible knowledge base of cyber adversary tactics and techniques based on real-world observations. Version ten comes with new Data…
MITRE ATT&CK Added to KubeScape
ARMO released an expanded version KubeScape, an open source testing tool for Kubernetes environments that is compliant with the standards set forth in the Kubernetes Hardening Guidance. Kubescape is one of the rapidly…
Posted incyber policy
NIST Drafts Ransomware Risk Management
NIST has released a draft Cybersecurity Framework Profile for Ransomware Risk Management to help organizations prevent, respond and recover from ransomware attacks. The Ransomware Profile is intended to be used…