ACSIA Help Center

Search

What Are "Attacks of the Mitre Framework"?

Permanently deleted user
Permanently deleted user
  • Updated

Overview

This article will explain the ACSIA alert called "Attacks of the Mitre framework".

Explaining the Attacks of the Mitre framework

"Attacks of the Mitre framework" refers to a standardized way of categorizing and describing different types of cyber attacks. The Mitre Corporation - a non-profit organization - has developed a framework called the Mitre ATT&CK framework, which stands for Adversarial Tactics, Techniques, and Common Knowledge.

The framework provides a common language and knowledge base to understand and communicate about various cyber threats and attack techniques. It organizes attacks into different categories, known as "tactics," and provides detailed information about the specific methods or "techniques" used within each tactic.

To give an example, let's consider a common type of attack called a "phishing attack." Phishing attacks are typically carried out by malicious actors who send deceptive emails pretending to be from a trusted source, such as a bank or a popular website. The intention is to trick the recipient into revealing sensitive information like login credentials or financial details.

In the Mitre ATT&CK framework, a phishing attack falls under the "Initial Access" tactic, which represents the initial step an attacker takes to gain entry into a target network or system. The specific technique associated with phishing attacks might be referred to as "Spear Phishing via Service" or "Spear Phishing via Attachment," depending on the method used.

By using the Mitre framework, cybersecurity professionals like us can better understand and communicate about specific cyber threats and take appropriate measures to defend against them. It helps in analyzing attack patterns, identifying vulnerabilities, and designing effective security measures to protect against various types of attacks.

Here's all the information that ACSIA gives you, in the Live Notification, about attacks of the Mitre framework:

Also, on the right of the above screen, we can see the actions that a user can perform in these cases.

 

 

Want to know more about the Mitre framework? Take a look at their website here.