The End Game: Exploiting Attacker Weak Spots with TTP-based Detection

...

Download Indicators of compromise (IOCs) are a losing battle for security teams as they are easily changed by the attackers. Adopting a detection strategy based on Tactics, Techniques, and Procedures (TTPs) returns power to the defender.

What you will learn:

- Why IOC-based detection is no longer effective and the benefits of a TTP-based
- How Attackers easily change IOC artifacts but lack the time and effort to modify their core tools and techniques
- How a large commercial bank switched to a TTP-based approach and immediately stopped a major APT

Categories
APPLICATIONS
0 Comment

Leave a Reply

Captcha image


RELATED BY

  • 5300c769af79e

    Ode to Sprint: Somebody Calls You, You Answer Quite Slowly

    I'm glad Sprint's fraud management folks were on their toes and thwarted the crime.In order to protect my account, Sprint erased my online profile and canceled my autopay.
  • 5300c769af79e

    Getting Started - Do UC&C Right

    Download UC&C has changed and become even more complex.Poor call or video quality, managing and troubleshooting in multivendor environments or having key features go un-used are problems that negatively affect many UC&C deployments.
  • 5300c769af79e

    Google Keyboard Update Brings Themes to All

    When Android N Developer Preview 3 showed up at Google I/O, we noticed that the included Google Keyboard was filled with awesome new features, most notably – themes.Today, Google is pushing out that same Keyboard to Google Play for all to start using.
  • 5300c769af79e

    Pokemon GO Update Introduces Grass...

    When Niantic removed the 3-step tracking feature from Pokemon GO a week or so ago, I think we all assumed that this was a sign that their developers were working to fix it quickly and potentially re-issue the feature with the next major update.Today, a decent sized update arrived, but all we got was some damn grass.