Cyber Threat Analysis in Complex Adaptive Systems
The use of wartime analogies in cybersecurity is common in our industry. Sun Tzu is often quoted in presentations and papers to emphasize an author’s key point. I will spare…
STIX2.1 & TAXII2.1 Finalized
The leading standards for representing and sharing cyberthreat intelligence are now OASIS Standards, publicly available for download and implementation. OASIS Members and all interested parties, OASIS is pleased to announce…
Iran’s Asymmetric Cyber Strategy
Iran is no stranger to propaganda. The Islamic Republic owes its existence in part to the distribution of cassette tapes with the recorded speeches of Ayatollah Khomeini. These were smuggled…
STIX2.1 Public Review Now Open
The specifications, defining a free, open language for describing and exchanging cyber threat intelligence, enters the 60-day public review that precedes the call for consent as an OASIS Standard. OASIS…
Monero Mining Worm – At Scale
Beginninng in mid-December, 2020 a threat actor group launched a wide-spread attack targeting Linux and Windows operating systems by dropping an XMRig Miner on targeted sites. An analysis of the…
Free Online Courses
CTIN’s Training Center is offering a selection of free online courses on STIX 2.1. Visit our Training Center and take advantage of this focused and informative content: Threat Analysis Frameworks…
Major Tier 2 Route Leaks
According to a recent post by Qrator Labs, at 17:13 UTC on March 31, 2020, the AS50048 (NEWREAL-AS) leaked, in total, 2658 IPv4 network prefixes to the Tier-2 transit provider Transtelecom. Those…
STIX 2.1 – Committee Specification 1.0 Finalized
OASIS is pleased to announce that STIX Version 2.1 from the OASIS Cyber Threat Intelligence (CTI) TC [1] has been approved as an OASIS Committee Specification.Structured Threat Information Expression (STIX)…
Election 2020 – Trolls are Ramping Up
The CTIN Team has recently been tracking a series of social media influence operations operatives that are currently targeting the US 2020 Election cycle with automated social media posts on…
STIX™ Version 2.1 CSPRD02 and TAXII™ Version 2.1 CSPRD03 Public Review
OASIS Members and other interested parties, We are pleased to announce that STIX™ Version 2.1 CSPRD02 and TAXII™ Version 2.1 CSPRD03 from the OASIS Cyber Threat Intelligence (CTI) TC [1]…
The “Mill Taste” Campaign
An active phishing campaign is being propagated from a Spanish-themed domain name that alludes to El Molino Sabor (in English: “Mill Taste”) and shows a close-up of a Sweet Potato…