The latest updates to the MITRE ATT&CK framework introduce several significant changes, particularly focusing on expanding coverage for AI-enabled techniques and social engineering behaviors. Additionally, there are substantial structural updates to ICS (Industrial Control Systems) sub-techniques aimed at enhancing granularity and actionability.
Key Updates:
1. AI & Social Engineering Techniques:
-
T1682: Query Public AI Services
This technique covers how adversaries use public AI services for large-scale target research and operational planning. -
T1683: Generate Content
This includes sub-techniques like T1683.001 (Written Content) and T1683.002 (Audio-Visual Content), detailing how adversaries generate content manually, through third parties, or with AI assistance. -
T1684: Social Engineering
This new parent technique captures trust-based manipulation across various channels such as email, voice, collaboration platforms, and help desk interactions to prompt user-authorized actions. Sub-techniques include:- Impersonation (T1684.001)
- **Email Spoof
Read the full article at Malware Analysis, News and Indicators - Latest topics
Want to create content about this topic? Use Nemati AI tools to generate articles, social posts, and more.
![[AINews] The Unreasonable Effectiveness of Closing the Loop](/_next/image?url=https%3A%2F%2Fmedia.nemati.ai%2Fmedia%2Fblog%2Fimages%2Farticles%2F600e22851bc7453b.webp&w=3840&q=75)
