TTP Table for Detecting APT Activity Related to SolarWinds and Active Directory/M365 Compromise

17 March 2021

CISA has released a table of tactics, techniques, and procedures (TTPs) used by the advanced persistent threat (APT) actor involved with the recent SolarWinds and Active Directory/M365 compromise. The table uses the MITRE ATT&CK framework to identify APT TTPs and includes detection recommendations.

Read full article on US-CERT

Date:

17 March 2021

Categorie(s):

NEWS

Tag(s):

Active, Activity, APT, Compromise, SolarWinds

Tracecat: Open-source SOAR30 April 2024
Why the automotive sector is a target for email-based cyber attacks30 April 2024
Passwords under seven characters can be easily cracked30 April 2024
Security analysts believe more than half of tasks could be automated30 April 2024
eBook: Do you have what it takes to lead in cybersecurity?30 April 2024