Industry Collaboration and Standards

Briefing: An ATT&CK-Like Framework for Telcos

Briefing: Deploying STIR/SHAKEN as a Service

All but the largest telecom operators should be looking at deploying the STIR/SHAKEN standard for blocking unwanted calls as a service, managed by a vendor partner, rather than building out their own infrastructure.

Briefing: An ATT&CK-Like Framework for Telcos

Briefing: MITRE’s ATT&CK Evals Are Out: Cheers!

The new MITRE ATT&CK Evaluations offer free access to high quality, comparative data on EDR product detection capabilities against APTs on an unprecedented scale. Those that need to - and know how to - can make good use of this data.

Briefing: An ATT&CK-Like Framework for Telcos

Briefing: New STIX & TAXII Releases Approved

The new open standard STIX and TAXII 2.1 releases have been approved by OASIS. A new self-certification program should help drive adoption and enable SOC teams to arrive at faster time to detection and time to mitigation.

Briefing: An ATT&CK-Like Framework for Telcos

Briefing: Orange Funds New CI/CD Security Tool

Orange Polska has released Mixeway, an open source CI/CD security orchestration tool. It needs a lot more work but the GUI and aspiration to correlate vulnerability testing across security tools make it worth taking a look at.

Briefing: An ATT&CK-Like Framework for Telcos

Briefing: A10 Helps SKT Build Leadership in 5G

SKT is a world-leader in 5G. This HardenStance Briefing depicts the operator's strategy for 5G services and applications and the contribution A10 Networks is making to SKT's supporting network and network security infrastructure.

Briefing: An ATT&CK-Like Framework for Telcos

Briefing: Ericsson and Nokia Complete 5G CyberHack

80 hackers gathered in Oulu, Finland, over the last week-end of November 2019 to crawl all over Ericsson and Nokia's 5G network products and see what flaws they could find. HardenStance attended and published this Briefing on what happened and why it matters.

Briefing: An ATT&CK-Like Framework for Telcos

White Paper: Next Steps in Playbook-Driven Cyber Security

This White Paper, sponsored by The Cyber Threat Alliance, IBM Security, KPN and Nokia looks at the importance of using Defensive and Incident Response (IR) playbooks as a foundational building block of security automation.  

Briefing: An ATT&CK-Like Framework for Telcos

Blog: NSS Labs Suit vs AMTSO Dismissed

The U.S. District Court for the Northern District of California has dismissed the NSS Labs Anti Trust lawsuit against AMTSO. Thank goodness.

Briefing: An ATT&CK-Like Framework for Telcos

Briefing: A New Window into an OpenC2 World

The OpenC2 Forum has approved its first specifications, putting the standard on a footing with which it can scale out into commercial deployments and increase speed and efficiency in cyber security operations.

Briefing: An ATT&CK-Like Framework for Telcos

Briefing: The NSS Labs Apology to CrowdStrike

The NSS Labs apology to CrowdStrike and resolution of their lawsuits is progress as far as it goes. But it still leaves outstanding the NSS antitrust suit against AMTSO.

Register

HardenStance on Twitter

(Disable your ad blocker if form is not visible.)