To help secure the future of ATT&CK, with the assistance of @MITREengenuity we've recently launched a charitable giving program that directly funds ATT&CK. You can check out the details at info.mitre-engenuity.org/hubfs/Benefact… or connect at mitre-engenuity.org/cybersecurity/….

A joint advisory by #CISA, #FBI, and international #cybersec authorities warns that #LockBit 3.0 exploits #CitrixBleed (CVE-2023-4966) to proceed with #ransomware deployment. Detect related #cyberattacks with a set of #Sigma rules from SOC Prime. socprime.com/blog/lockbit-3… #CVE

300+ managed service providers trust SOC Prime to drive cost-efficient & high-margin business. Learn how #MDR organizations can accelerate and scale their service offerings with cutting-edge technologies. socprime.com/blog/accelerat… #MSSP #SOC #SOCservices #cybersecurity #BlueTeam

North Korean #Konni #APT uses russian-language weaponized Word documents in the ongoing #phishing campaign to spread #RAT #malware, exfiltrate data, and run commands on targeted instances. Detect attacks with new #Sigma rules in SOC Prime Platform. socprime.com/blog/konni-gro… #DFIR

At the turn of 2024, let’s celebrate our shared success and accomplishments while shaping collective cyber defense together. Check out 2023 in review, listing key milestones of the year. socprime.com/news/2023-year… #SOCPrime #2023inReview #SummaryOf2023 #YearInReview

#APT28 strikes again, targeting the Ukrainian public sector and organizations in Poland. #CERTUA warns defenders of new #phishing attacks using MASEPIE #malware and OCEANMAP #backdoor. Detect attacks with #Sigma rules from SOC Prime Platform. socprime.com/blog/apt28-adv… #DFIR #APT

#UAC0050 hits anew! Hackers massively distribute #phishing emails impersonating SSSCIP and the State Emergency Service of Ukraine to drop #RemoteUtilities, as CERTUA reports. Detect #cyberattacks with Sigma rules from SOC Prime Platform. socprime.com/blog/uac-0050-…

Critical #RCE in Atlassian Confluence Server and Data Center (CVE-2023-22527) is actively exploited in the wild, with most of IP addresses linked to russian attackers. Detect possible #exploit attempts with a dedicated Sigma rule by SOC Prime. socprime.com/blog/cve-2023-…

Thank you to our first ATT&CK benefactor, SOC Prime! SOC Prime's generous donation helps us advance ATT&CK and continue to bring you the latest in adversary behaviors. For more information on the benefactor program, please check out attack.mitre.org/resources/enga….

SOC Prime is honored to become a ATT&CK Benefactor to foster the knowledge base evolution and drive collective cyber defense on a global scale. socprime.com/news/soc-prime… #MITRE #SOCPrime #CyberDefense @MITREengenuity

The increased sophistication, an exponential rise in volumes, and a disastrous impact of cyber attacks relying on constantly evolving adversary toolkits fuel the need for cutting-edge technologies backed by collective industry expertise. SOC Prime is genuinely honoured to become

Heads up! A critical #Jenkins #vulnerability (CVE-2024-23897) can lead to #RCE, with enhanced risks of attacks due to the #PoC public release. Detect #exploitation attempts with new #Sigma rules from SOC Prime Platform. socprime.com/blog/cve-2024-…

The Prime Hunt v1.4.2 is out! Learn more about the latest enhancements from our blog, including support for #ChronicleSecurity and email templates for streamlined #IOC sharing. socprime.com/news/the-prime… #ThePrimeHunt #SIEM #threatdetection

The latest #Mispadu #infostealer variant exploits CVE-2023-36025 #vulnerability to attack Spanish-speaking users. Detect associated malicious activity with a Sigma rule in the SOC Prime Platform. socprime.com/blog/mispadu-s…

Advance your #DetectionEngineering skills and earn money with SOC Prime's Threat Bounty Program! my.socprime.com/tdm-developers/

Equip yourself with the best Threat Hunting & Detection Engineering tools backed by #Sigma and #MITRE ATT&CK®. Pave the way to a secure tomorrow by choosing your perfect cyber defense fit with Threat Detection Marketplace, Uncoder AI, or Attack Detective. socprime.com/blog/soc-prime…

#CISA advisory issued with federal and international partners warns cyber defenders of the #VoltTyphoon #APT campaign targeting the US critical infrastructure. Detect associated malicious activity with a set of detection rules in the SOC Prime Platform. socprime.com/blog/volt-typh…

North Korean #Kimsuky #APT leverages novel #TrollStealer #malware and #GoBear #backdoor to target organizations in South Korea. Detect associated malicious activity with a set of detection rules in the SOC Prime Platform. socprime.com/blog/troll-ste…

Read the insightful interview with our Threat Bounty developer Phyo Paing Htun telling about his experience creating resilient #Sigma rules and role of the community in cyber defense. socprime.com/blog/interview… #BlueTeam #threathunting #infosec #SOC #threatdetection

#EarthPreta (aka #MustangPanda) APT leverages #DOPLUGs malware to target government entities in Europe and the Asia-Pacific region. Detect associated malicious activity with a set of Sigma rules in the SOC Prime Platform. socprime.com/blog/earth-pre…