AA21-008A: Detecting Post-Compromise Threat Activity in Microsoft Cloud Environments

This Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques.

Read full article on US-CERT