Multi Source Analysis of Top MITRE ATT&CK Techniques
A collaborative report between the Cyentia Institute and TidalCyber
Read the report to see who provides the most comprehensive reporting of techniques and sub-techniques, and who closely follows in the top five!
The figure shows varying source reporting across tactics, with sparse coverage for pre-intrusion tactics, see the full figure and analysis in the report!
The chart highlights substantial variations in reported frequency, but these differences often result from non-comparable data.
The comparison of technique-level coverage involves tallying the number of reporting sources for each technique, revealing that a dozen or so techniques have notably higher source-level coverage
Our recent analysis of MITRE ATT&CK techniques uncovered significant gaps in reporting, emphasizing the need for a more comprehensive threat-informed defense. The findings from the report underscore the challenges within the cybersecurity landscape, including rapid updates, tactic-technique ambiguities, and the underreporting of sub-techniques.
To empower your cybersecurity strategies, download our full report for an in-depth understanding of ATT&CK techniques.
Rewatch the companion webinar with Wade Baker and Frank Duff.
We plan to expand this research with future studies. If you’re interested in sponsoring or contributing data, please reach out!
Sign-up to be notified when we release new research!
In the ever-evolving cyber security landscape, it’s more important than ever to stay up-to-date with the latest cyber security research and analysis so you can be better prepared. Our IRIS series is a rapidly growing series of reports dedicated to clearing away these fears by leveraging real-world data and rigorous analysis focused on key aspects and challenges of managing cyber risk.
Sign up today to be notified when we publish new research so you don’t miss out!