Australian Cyber Security Center Advisory 2020-008: TTPs
On 19 June 2020, Prime Minister Scott Morrison addressed the nation about malicious cyber activity against Australian networks. “We know it is a sophisticated state-based cyber actor because of the scale and nature of the targeting and the tradecraft used,” he said, “Our Government’s expert agency on Cybersecurity is the Australian Cyber Security Center and it’s already published a range of technical advisories.”

Specifically, in its Advisory 2020-008 the Australian Cyber Security Center published tactics, techniques and procedures (TTPs) used to target multiple Australian networks, focusing on the MITRE ATT&CK framework of known adversary TTPs. For years the Australian Cyber Security Center (ACSC) has used the MITRE Common Vulnerabilities Exposure (CVE) framework to mitigate risk in operating systems.

What is MITRE ATT&CK?
MITRE ATT&CK® is a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations. The ATT&CK knowledge base is used as a foundation for the development of specific threat models and methodologies in the private sector, in government, and in the cybersecurity product and service community.

 

Register below if you want to ensure you’re able to detect the ACSC TTPs associated with the PMs announcement.