Aggregator

TTPS在病毒家族定性中的应用

腾讯安全智能
5 years 7 months ago
TTPS是Tactics(战术), Techniques(技术), Procedures(程序或者过程、步骤)的缩写。TTP最初用于反恐,根据世界范围内所有恐怖分子或组织实施袭击分析和研究,恐怖分子的攻击可以用TTP的方式描述。

Phishing metrics - what to track?

Embrace The Red
5 years 7 months ago

The results of phishing campaigns are often not comparable with each other over time. Various security vendors and red teams use different tooling and techniques - which is totally fine.

However, I recommend requiring tracking a minimum set of metrics to be able to compare results over time.

Funny side facts: At times employees are messing with the red team, entering invalid creds for CISO or CEO and things along those lines. Some employees (often engineers) are curious and open the link in isolated VMs to debug and explore the phishing site.

Attacking the Organism: Telecom Service Providers

F5 Labs
5 years 7 months ago
Telecom touches everything that everyone does, and the insertion points are nearly limitless. F5 Labs' Preston Hogue writes for SecurityWeek, discussing the specific prevention measures telecom providers can take to protect themselves and their customers.

Managed ad