Using CTI in Realistic Attack Simulations

Nov 26, 2024

Component not found for block type: video-embed

Australia holds regular attack simulation exercises to test the cyber resilience of the financial services sector. These exercises, called Cyber Operational Resilience Intelligence-led Exercises (CORIE), are designed to be as realistic as possible, drawing on targeted cyber threat intelligence to create attack scenarios. By using tactics, techniques and procedures (TTPs) that match active threat groups, organizations can learn their potential weak points and improve. In this Studio 471, two experts from the cybersecurity consultancy CyberCX discuss how these exercises are developed and executed.

Participants:
Diego Silva, Technical Principal, Cyber Threat Intelligence, CyberCX
Willem Mouton, Technical Director of Adversary Simulation, CyberCX
Jeremy Kirk, Executive Editor, Cyber Threat Intelligence, Intel 471

Threat Hunting//

Threat Hunting Case Study: FileFix

FileFix bypasses Mark of the Web (MotW) protections by hijacking the Windows File Explorer address bar. Here is how to hunt for it.

Emerging Threats//

Gentlemen Ransomware

Gentlemen ransomware uses credential abuse, defense evasion, and double extortion tactics to compromise enterprise environments and increase pressure on victims.

Emerging Threats//

TeamPCP Supply Chain Attacks

TeamPCP is exploiting trusted npm and PyPI packages to compromise developer environments, steal credentials, and extend attacks across software supply chains.

Sign up for our Executive Intel Update

Stay informed with our weekly executive update, sending you the latest news and timely data on the threats, risks, and regulations affecting your organization.

Using CTI in Realistic Attack Simulations

Related Articles

Threat Hunting Case Study: FileFix

Gentlemen Ransomware

TeamPCP Supply Chain Attacks

Sign up for our Executive Intel Update

Sign up for our Executive Intel Update