Mitre attck cloud matrix

1. What is a MITRE Att&ck matrix?
2. What are the 3 main matrices of the MITRE Att&ck framework?
3. What is a matrix attack?
4. Is the cloud matrix part of the enterprise matrix?

What is a MITRE Att&ck matrix?

The MITRE ATT&CK matrix contains a set of techniques used by adversaries to accomplish a specific objective. Those objectives are categorized as tactics in the ATT&CK Matrix. The objectives are presented linearly from the point of reconnaissance to the final goal of exfiltration or "impact".

What are the 3 main matrices of the MITRE Att&ck framework?

MITRE ATT&CK Matrix

The three primary Matrices in the ATT&CK framework are the Enterprise Matrix, the Mobile Matrix, and the ICS (Industrial Control System) Matrix.

What is a matrix attack?

MITRE ATT&CK is a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations of cybersecurity threats. They're displayed in matrices that are arranged by attack stages, from initial system access to data theft or machine control.

Is the cloud matrix part of the enterprise matrix?

The Cloud Matrix is a subset of the Enterprise Matrix, and covers cloud-based tactics and techniques. It covers the following platforms: Azure AD, Office 365, Google Workspace, SaaS, and IaaS. It is this last section of the Cloud Matrix, the IaaS Matrix, which we will cover in this post.