TTPwire Vol. 1 · MITRE ATT&CK·Tagged

← All stories

F5 Labs

Red Team Tools Reveal Gaps in Vulnerability Management Practice

2021-01-22 · Read original ↗

ATT&CK techniques detected

5 predictions
T1588.002Tool
96%
"red team tools reveal gaps in vulnerability management practice on tuesday, december 8th, 2020, fireeye, a leading cybersecurity firm used by governments and companies for penetration testing and forensic services announced that it had been the target of an attack by nation - sta…"
T1068Exploitation for Privilege Escalation
82%
"response has been exemplary. older vulnerabilities still work the currently released list of vulnerabilities from the stolen tools can be found at https : / / github. com / fireeye / red _ team _ tool _ countermeasures / blob / master / cves _ red _ team _ tools. md the details r…"
T1190Exploit Public-Facing Application
74%
"end. just as some companies mistakenly assume that having defenses in place against the owasp top 10 means they are " secure, " they forget that the owasp top 10 is meant as a bare minimum for security, and is a wholly inadequate level of defense against any but the most basic of…"
T1068Exploitation for Privilege Escalation
69%
"given vulnerability is much longer than might be naively supposed. one standout is cve - 2014 - 1812, a windows local privilege escalation vulnerability. the oldest on the list, it nevertheless shows that while many organizations prioritize patching and defense of their perimeter…"
T1588.006Vulnerabilities
47%
"the absence of a publicly available exploit, it might be classed as a lower priority, at least in relation to the first scenario. however, it seems that in some organizations, the necessary follow - through is not always brought to bear. instead of patching the most critical bugs…"

Summary

FireEye tools show attackers aren’t worried about your defenses.