logo
episode-header-image
Jul 2024
18m 37s

The current state of MITRE ATT&CK.

N2K Networks
About this episode

Rick Howard, The CSO, Chief Analyst, and Senior Fellow at N2K Cyber, discusses the current state of MITRE ATT&CK with CyberWire Hash Table guests Frank Duff, Tidal Cyber’s Chief Innovation Officer, Amy Robertson, MITRE Threat Intelligence Engineer and ATT&CK Engagement lead, and Rick Doten, Centene’s VP of Information Security.


References:

Amy L. Robertson, 2024. ATT&CK 2024 Roadmap  [Essay]. Medium.

Blake E. Strom, Andy Applebaum, Doug P. Miller, Kathryn C. Nickels, Adam G. Pennington, Cody B. Thomas, 2018. MITRE ATT&CK: Design and Philosophy [Historical Paper]. MITRE.

Eric Hutchins, Michael Cloppert, Rohan Amin, 2010. Intelligence-Driven Computer Network Defense Informed by Analysis of Adversary Campaigns and Intrusion Kill Chains [Historic Paper]. Lockheed Martin Corporation.

Nick Selby, 2014. One Year Later: The APT1 Report [Essay]. Dark Reading.

Rick Howard, 2023. Cybersecurity First Principles: A Reboot of Strategy and Tactics [Book]. Goodreads.

Rick Howard, 2020. Intrusion kill chains: a first principle of cybersecurity.  [Podcast]. The CyberWire.

Rick Howard, 2022. Kill chain trifecta: Lockheed Martin, ATT&CK, and Diamond. [Podcast]. The CyberWire.

Rick Howard, 2020. cyber threat intelligence (CTI) (noun) [Podcast]. Word Notes: The CyberWire.

Kevin Mandia, 2014. State of the Hack: One Year after the APT1 Report [RSA Conference Presentation]. YouTube.

SAHIL BLOOM, 2023. The Blind Men & the Elephant [Website]. The Curiosity Chronicle.

Sergio Caltagirone, Andrew Pendergast, and Christopher Betz. 05 July 2011. The Diamond Model of Intrusion Analysis. Center for Cyber Threat Intelligence and Threat Research.[Historical Paper]

Staff, n.d. Home Page [Website]. Tidal Cyber.

Learn more about your ad choices. Visit megaphone.fm/adchoices

Up next
Yesterday
Inside Intel’s internal web maze.
A researcher uncovers vulnerabilities across Intel’s internal websites that exposed sensitive employee and supplier data. The Kimsuky group (APT43) targets South Korean diplomatic missions. A new DDoS vulnerability bypasses the 2023 “Rapid Reset” fix. Drug development firm Inotiv ... Show More
26m 18s
Aug 18
Workday’s bad day.
HR software giant Workday discloses a data breach. Researchers uncover a zero-day in Elastic’s EDR software. Ghost-tapping is an emerging fraud technique where cybercriminals use NFC relay attacks to exploit stolen payment card data. Germany may be on a path to ban ad blockers. A ... Show More
26m 56s
Aug 16
Dr. Rois Ni Thuama: Get into the game. [Cyber governance] [Career Notes]
Please enjoy this encore of Career Notes. Head of Cyber Governance with Red Sift, Dr. Rois Ni Thuama shares the circuitous route of her career into cyber governance. She notes the route "looks really clean, but actually it was a bit more Jeremy Bearimy." While at Trinity College, ... Show More
9m 50s
Recommended Episodes
Jul 1
Machine-Scale Defense and the Future of Cybersecurity
Jeetu Patel, President and Chief Product Officer at Cisco, joins Ann on this week's episode of Afternoon Cyber Tea to explore how artificial intelligence is reshaping the cybersecurity landscape. Jeetu shares insights on the urgent need for machine-scale defenses, the potential f ... Show More
29m 50s
Sep 2024
“Catastrophic World Events” - Randall Carlson: Freemasons, Extinction Events & Planetary Defense | PBD Podcast | Ep. 466
Randall Carlson, a master of ancient mysteries, joins Patrick Bet-David for an eye-opening discussion on the past and future of humanity. Carlson sheds light on suppressed knowledge from Freemasonry, the threat of mass extinction events, and cataclysmic climate shifts that have s ... Show More
2h 6m
May 29
Cybercrime Magazine Update: Cybercrime Costs. Evolution From "Wild West" To Industrialized Economy.
The time for proactive cyber defense was yesterday. By 2031, cybercrime will cost the global economy over $1 million in damages every 3 seconds, according to Cybersecurity Ventures. But the growth patterns tell a more interesting story. Evolution Equity Partners believes that cyb ... Show More
3m 52s
Dec 2024
Top tech predictions for 2025
In the final episode of 2024, CNBC's Tom Chitty and Arjun Kharpal are joined by a whole host of special guests to reflect back on the year, and to look ahead to an exciting 2025 for technology.First off, AI expert and partner at VC firm IVP Eric Liaw joins to discuss whether the ... Show More
1h 2m
Dec 2024
Microsoft bets on AI healthcare
European Nato members are holding talks about increasing the alliance’s target for defence spending, Microsoft’s artificial intelligence head Mustafa Suleyman is building a team focused on consumer health, and US inflation ticked up to 2.7 per cent last month. Plus, new regulatio ... Show More
13m 1s
Jan 2025
'Godfather of AI' Backs Musk Lawsuit, Data Centers Distort Electric Grid, and 2025 Predictions From 1925
We're experimenting and would love to hear from you!In this episode of Discover Daily, we delve into the latest developments in the OpenAI lawsuit, where AI pioneer Geoffrey Hinton has thrown his support behind Elon Musk's legal challenge. The episode explores the contro ... Show More
8m 43s
Dec 2024
Lessons from 2024's Biggest Cyber Incidents and Building Stronger Defenses for 2025
In this episode, Shrav Mehta, Founder, and CEO at Secureframe, joins me to discuss major cybersecurity incidents in 2024, highlighting five significant breaches: National Public Data (2.7 billion records), AT&T (50 billion), Ticketmaster (500 million), Change Healthcare (145 mill ... Show More
36m 10s
Jul 2024
Mike Solana: Trump, Crypto, Tech, Politics & Memetic Wars
Is the U.S going to be ok? Mike Solana (no relation to Solana the chain, that’s his name),is the editor-in-chief of Pirate Wires and the guy who broke the Trump Memecoin news. We brought him on the show today to try to make sense of the current state of politics in the face of th ... Show More
1h 24m
Listen to millions of songs and podcasts on Anghami