This Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques.
Read full article on US-CERT
AA21-008A: Detecting Post-Compromise Threat Activity in Microsoft Cloud Environments
- OpenSSF Warns of Open-Source Social Engineering Threats
- Russia’s Sandworm Upgraded to APT44 by Google’s Mandiant
- Integrate Kubernetes policy-as-code solutions into Security Hub
- Korean researcher details scheme abusing Apple’s third-party pickup policy
- Russia’s Sandworm APT linked to attack on Texas water plant