Blog - Page 5 of 16

Attack Graph Response to CISA Advisory AA23-250A: Multiple Nation-State Threat Actors Exploit CVE-2022-47966 and CVE-2022-42475

AttackIQ has released a new attack graph in response to the recently published CISA Advisory (AA23-250A) that seeks to emulate the activities carried out by multiple nation-state threat actors at an Aeronautical Sector organization as early as January 2023.

Authors: Francis Guibernau Andrew Costis September 25, 2023 Read More

Ransomware

Emulating the Controversial and Intriguing Rhysida Ransomware

AttackIQ has released two new attack graphs that seek to emulate the various activities carried out by the controversial Ransomware-as-a-Service (RaaS) known as Rhysida against multiple targets worldwide since its discovery in May 2023.

September 20, 2023 Read More

AttackIQ

The Uncharted Waters of Cloud Security Optimization

Programmatic cloud testing can be your true north.

September 19, 2023 Read More

AttackIQ

Securing Remote Networks with AttackIQ Flex

The rise of remote work, branch networks, and the entwining of IoT and OT systems have created vast network footprints, making identifying vulnerabilities more challenging than ever. Cyber threats loom large, and with the stakes higher than ever, ensuring your defenses are impervious is paramount.

September 7, 2023 Read More

Most Recent

Adversary Emulation

Attack Graph Response to US-CERT Alert (AA22-264A): Iranian State Actors Conduct Cyber Operations Against the Government of Albania

AttackIQ has released a new fully featured attack graph that emulates the tactics, techniques, and procedures (TTPs) used by Iranian nation-state adversaries against the government of Albania.

September 23, 2022 Read More

Adversary Emulation

Emulating the Sophisticated Russian Adversary APT28

AttackIQ has released a content bundle including two new attack graphs covering two historical APT28 campaigns involving their SkinnyBoy and Zebrocy malware families and standalone scenarios emulating command-and-control traffic to test boundary controls.

September 21, 2022 Read More

Adversary Emulation

Attack Graph Response to US-CERT Alert (AA22-257A): Iranian Islamic Revolutionary Guard Corps-Affiliated Cyber Actors Exploiting Vulnerabilities for Ransom Operations

AttackIQ has released a new attack graph emulating the techniques used by Iranian actors to compromise and encrypt systems — without the need for malware — to help customers defend against threats that try to operate while living solely off the land.

September 16, 2022 Read More

Adversary Emulation

Attack Graph Response to US-CERT Alert (AA22-249A): #StopRansomware Vice Society

AttackIQ has released a new attack graph emulating a Vice Society attack to help customers validate their security controls and their ability to defend against this threat actor and others who utilize similar behaviors.

September 8, 2022 Read More

Adversary Emulation

Attack Graph Response to US-CERT Alert (AA22-223A): Testing Security Controls against Zeppelin Ransomware

AttackIQ’s Adversary Research Team has released a new assessment to test endpoint and network controls’ ability to prevent Zeppelin Ransomware.

August 11, 2022 Read More

Adversary Emulation

Attack Graph Response to US-CERT Alert (AA22-216A): Testing Security Controls against 2021’s Top Malware Strains

AttackIQ’s Adversary Research Team has released two new assessments to test endpoint and network controls’ ability to prevent widely utilized malware families.

August 10, 2022 Read More

Center for Threat-Informed Defense

How to Test Your Defenses Against Personalized Top 10 MITRE ATT&CK Techniques

The Center for Threat-Informed Defense recently published a methodology and calculator so that you can identify the top MITRE ATT&CK techniques that impact your sector.

August 4, 2022 Read More

Adversary Emulation

Malware Emulation Attack Graph for SysJoker’s Linux Variant

AttackIQ’s Adversary Research Team has released a new Malware Emulation Attack Graph that emulates the Linux behaviors of the multi-platform backdoor known as SysJoker.

August 2, 2022 Read More

Adversary Emulation

Leveraging the MITRE ATT&CK framework to build a threat-informed defense

In this guest blog post, Bradley Schaufenbuel of Paychex writes about how security teams can leverage the MITRE ATT&CK framework to mount a “threat-informed” defense. This post originally appeared as an article in SC Magazine.

July 29, 2022 Read More

Cybersecurity

IDC Study Finds Organizations Using AttackIQ Significantly Reduced Risk and Cost of Security Breaches, While Improving SOC Efficiency

Hot off the press, IDC has released an IDC Business value White Paper, sponsored by AttackIQ, that explores the business value and benefits of using the AttackIQ Security Optimization Platform.

July 29, 2022 Read More

Adversary Emulation

OilRig Attack Graphs: Emulating the Iranian Threat Actor’s Global Campaigns

AttackIQ has released two new attack graphs that emulate different aspects of OilRig’s operations against multiple sectors around the globe. With these attack graphs, you can test and validate your defenses to improve cybersecurity readiness.

July 11, 2022 Read More

Adversary Emulation

Attack Graph Response to US-CERT Alert (AA22-174A): Malicious Cyber Actors Continue to Exploit Log4Shell in VMware Horizon Systems

AttackIQ has released two new fully featured attack graphs emulating the tactics, techniques, and procedures (TTPs) used by likely nation-state adversaries that continue exploiting the Log4Shell vulnerability in VMware Horizon Systems.

June 28, 2022 Read More