Attackers keep innovating their TTPs to circumvent established defenses, so CTI on attacker innovation is fundamental. Our Twitter feeds are saturated with helpful reports on a daily basis, but how does this relate to the trends and developments within the threat ecosystem as a whole? This presentation discusses trends in ATT&CK tactics and techniques, based on a research project in which 950+ unique Windows malware families from an unbiased source were analyzed. The presentation will also highlight how commodity malware authors are adopting techniques from APTs and discuss best practices for how ATT&CK can be used to improve CTI analysis.


time: 14:00
speakers: Kris Oosthoek

Other sessions:

You Should Get Some (Cyber) Exercise!

The Five People You Meet in Cybercriminal Heaven

Cyber Supervision in the Netherlands

Monitoring and Cleaning Up Infected IoT Devices in the Netherlands

The Italian Cyber Security Landscape: Building a Resilient Nation

Current State and Development of DNS Security and Privacy