MITRE Unveils ATT&CK v18 With Updates to Detections, Mobile, ICS

Posted on By CWS

MITRE introduced on Tuesday that its ATT&CK framework has been up to date to model 18, with vital adjustments in a number of sections.

The group stated the October 2025 replace of ATT&CK, the broadly used data base of adversary ways and methods, brings enhancements by way of methods, teams, campaigns, and software program.

The federally funded analysis and improvement middle stated the most important modifications in comparison with ATT&CK v17 are associated to the defensive content material of ATT&CK.

Particularly, two new objects have been added to detections: Detection Methods, which defines high-level approaches for detecting particular attacker methods, and Analytics, which gives platform-specific risk detection logic.

Within the Enterprise part, MITRE has added methods pertaining to fashionable infrastructure, CI/CD pipelines, Kubernetes, and cloud databases. ATT&CK v18 additionally contains ransomware preparation behaviors, and attackers monitoring risk intelligence sources for info on their very own campaigns.

Within the cyber risk intelligence (CTI) part of ATT&CK v18, MITRE has added new teams and campaigns, in addition to software program linked to produce chain assaults, cloud id exploitation, and assaults geared toward virtualization and edge programs.

Within the Cell part, protection has been added for adversaries abusing the ‘linked units’ function in Sign and WhatsApp. Additionally on this part, the ‘abuse accessibility options’ method has been introduced again after it was deprecated in model 7 of ATT&CK. 

Probably the most vital adjustments within the industrial management programs (ICS) part are associated to new property and updates to the descriptions of present property. The brand new property are distributed management system controllers, firewalls, and switches.Commercial. Scroll to proceed studying.

MITRE on Tuesday additionally introduced the creation of the ATT&CK Advisory Council, which gives a proper channel for enter from advisors representing finish customers, distributors, authorities organizations, and academia.

Associated: MITRE Updates Record of Most Widespread {Hardware} Weaknesses

Associated: MITRE Unveils AADAPT Framework to Sort out Cryptocurrency Threats

Associated: MITRE Publishes Submit-Quantum Cryptography Migration Roadmap

Security Week News Tags:, , , , , , ,

Related Posts

Australia Enforces Ransomware Payment Reporting Security Week News
Up to 25% of Internet-Exposed ICS Are Honeypots: Researchers Security Week News
Security Firm Andy Frain Says 100,000 People Impacted by Ransomware Attack Security Week News
Threat Actor Infests Hotels With New RAT Security Week News
Pakistani Hackers Back at Targeting Indian Government Entities Security Week News
Coinbase Says Rogue Contractor Data Breach Affects 69,461 Users Security Week News