We discuss The Red Report, a malware focused report from Picus Security. They analyzed just over half a million malware samples from 2022, and came up with a list of the top ten MITRE ATT&CK techniques seen, and give a VERY DETAILED report on how to catch them.
If you're in IR, Content Development, Threat Hunting, or a Security Operations Analyst, this report is AWESOME. Highly recommended!
If you're in Vulnerability Management, Risk and Compliance, or strategy, it's less useful. Very nuts and bolts.
Report Link - The Picus Red Report 2023 Reveals Most Common MITRE ATT&CK Techniques
If you found this interesting or useful, please follow us on Twitter @serengetisec and subscribe and review on your favorite podcast app!
In this episode, we spend way too much time discussing a specious article about how state sanctioned criminals don't actually present any unique methods...
More AI Discussion! Yay! We discuss how Amazon is putting tape guardrails around Chat GPT and where Daniel Miessler thinks AI will drive value...
In this episode, we review what we know about Zero Trust Networking, and the types of products that claim to do it. Original Forrester...
