MITRE Archives

Despite challenges, the CVE program is a public-private partnership that has shown resilience

In 1999, Dave Mann and Steve Christey, two researchers from the nonprofit R&D corporation MITRE, debuted a concept for security vulnerabilities that laid the groundwork for the…

2 days ago By Cynthia Brumfield

Infosec pros: We need CVSS, warts and all

The Common Vulnerability Scoring System has a lot of critics, but experts say it’s still the best unified way to share the severity of cybersecurity flaws.

Feb 5, 2025 By Cynthia Brumfield

Latest round of MITRE ATT&CK evaluations put cybersecurity products through rigors of ransomware

The sixth round of tests included two ransomware variants, while also incorporating macOS for the first time.

Dec 11, 2024 By Greg Otto

Tesla CEO Elon Musk smiles as he addresses guests at the Offshore Northern Seas 2022 (ONS) meeting in Stavanger, Norway on August 29, 2022. (Photo by CARINA JOHANSEN/NTB/AFP via Getty Images)

Twitter’s recommendation algorithm opens platform to manipulation, bot attacks, researcher finds

Twitter's source code apparently revealed how it's possible to game the company's software to reduce access to specific accounts.

Apr 4, 2023 By AJ Vicens

How to improve threat detection in ICS environments

A new report evaluates an end-to-end cyberattack on industrial control systems and offers solutions for threat detection capabilities.

Feb 24, 2022 By CyberScoop Staff

Here comes the bride: New map matches threat intel to cyberdefenses

It's a marriage between the NIST cybersecurity the MITRE ATT&CK frameworks.

Dec 15, 2020 By Tim Starks

Ukraine cyber assistance — Gamaredon has overwhelmingly focused its hacking efforts on Ukraine (Getty Images).

State Department pledges $8 million more in cybersecurity aid to Ukraine

The U.S. has increased cyber aid to Ukraine after Russia-linked cyberattacks on power grids in 2015 and 2016.

Mar 3, 2020 By Sean Lyngaas

Can software vendors block a notorious criminal group’s attacks? MITRE wants to find out

First Cozy Bear, now FIN7.

Feb 20, 2020 By Sean Lyngaas

ATT&CK framework, MITRE — (Sean Lyngaas / Scoop News Group)

How would MITRE’s popular cyberattack framework apply to industrial control systems?

The ATT&CK framework should account for the “full gamut of adversary behavior,” says one of the lead cybersecurity engineers who helps maintain the popular document.

Oct 30, 2019 By Sean Lyngaas

MITRE asks vendors to do more to detect stealthy hacks

APT29 is the muse, but the evaluation is also about ensuring that products can detect "living off the land" techniques.

May 1, 2019 By Sean Lyngaas