Skip to Content

Tag: FIN7

Understanding Threat Modelling

What is a threat model? Threat modelling, as defined by OWASP, “works to identify, communicate, and understand threats and mitigations within the context of protecting something of value”. It is a way of structuring thinking around what critical assets an organization has and which are the likely threats to that organization. There are many different ways […]

Mitre ATT&CK™ and the FIN7 Indictment: Lessons for Organizations

On August 1, 2018, the US Department of Justice unsealed an indictment against three members of the international cybercrime group known as FIN7. We previously wrote about what FIN7 is, the implications of this indictment and some of the fascinating details of their campaigns, such as the use of a front company that was used […]