MITRE Releases Latest Version of ATT&CK Framework
MITRE has released the latest version of its cyber attack investigation framework, MITRE ATT&CK v14. The framework catalogues and categorizes the behaviors of cyber adversaries in real-world attacks. The new version includes expanded coverage of activities adjacent to direct network interactions, such as deceptive practices and social engineering techniques. It also features enhanced detection notes, relationships between detections, and new assets in the ICS matrix. Organizations can use MITRE ATT&CK to improve their threat models, evaluate vendor capabilities, map detections, and educate employees. MITRE also works on D3FEND, a knowledge base of defensive countermeasures that complements the ATT&CK framework.