We discuss The Red Report, a malware focused report from Picus Security. They analyzed just over half a million malware samples from 2022, and came up with a list of the top ten MITRE ATT&CK techniques seen, and give a VERY DETAILED report on how to catch them.
If you're in IR, Content Development, Threat Hunting, or a Security Operations Analyst, this report is AWESOME. Highly recommended!
If you're in Vulnerability Management, Risk and Compliance, or strategy, it's less useful. Very nuts and bolts.
Report Link - The Picus Red Report 2023 Reveals Most Common MITRE ATT&CK Techniques
If you found this interesting or useful, please follow us on Twitter @serengetisec and subscribe and review on your favorite podcast app!
In this week's episode, we discuss Amazon tracking keystrokes, attacker's using CAPTCHA's to hide credential stealing sites, and a bonus article that we decided...
In this episode, we discuss Ransomware affecting ships and 3rd party service organizations, new cyberinsurance requirements around MFA and service account, supply chain woes,...
This week we discuss the SEC targeting Solarwinds Executives, the recent Teams vulnerability allowing malware to be sent to your users, and Japan's Digital...
