#199: An ATT&CK Review and into the Blogosphere

#199: An ATT&CK Review and into the BlogosphereA look at the week
͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     ͏     
Forwarded this email? Subscribe here for more
#199: An ATT&CK Review and into the Blogosphere
A look at the week
Austin Miller
May 23 
 
READ IN APP
 
Building GenAI infra sounds cool—until it’s 3am and your LLM is down
This free guide helps you avoid the pitfalls. Learn the hidden costs, real-world tradeoffs, and decision framework to confidently answer: build or buy? Includes battle-tested tips from Checkr, Convirza & more.
Grab it now!
Packt SecPro  is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.
Upgrade to paid
Welcome to another _secpro!
For all of you who attended the RSA Conference and CyberUK, we hope you had a great time getting up to scratch with the goings on in this industry. Got something to share? Reply to this email and tell us about your thoughts. This week's issue contains:
- Apple's AirPlay Vulnerabilities Expose Devices to Hijacking Risks
- U.S. Charges 16 Russians Linked to DanaBot Malware Operation
- Budget Cuts to U.S. Cybersecurity Agency Raise Concerns Amid Rising Threats
- Anthropic Implements Stricter Safeguards for New AI Model Amid Biosecurity Concerns
- Russian Hackers Target Western Firms Supporting Ukraine, U.S. Intelligence Reports
- MITRE ATT&CK - Explained
- Understanding the use cases of the MITRE ATT&CK Framework
- Integrating MITRE ATT&CK with SIEM Tools
- Demystifying the MITRE ATT&CK Framework
Check out _secpro premium
Cheers!
Austin Miller
Editor-in-Chief
Reflecting on MITRE ATT&CK
Making our way through the MITRE ATT&CK's Top Ten most exploited techniques over the last 9 weeks has been fun. We're almost ready to dive into the most exploited T-number, but we thought it'd be good to stop and smell the adversarial roses for a minute first - just make sure you've been paying attention. These T-numbers are on the test, so make sure to go back and check out #10 through #2 in the list below:
- #2: T1059
- #3: T1333
- #4: T1071
- #5: T1562
- #6: T1486
- #7: T1082
- #8: T1547
- #9: T1506
- #10: T1005
We have five copies of Glen Singh's Kali Linux book to give away. Leave a comment in order to win a virtual copy!
RSA Conference 2025 – Navigating the New Cyber Frontier
A reflection on this year's events
Read the rest here
Thanks for reading Packt SecPro! This post is public so feel free to share it.