Big Fish, Little Fish, Critical Infrastructure: An Analysis of Phineas Fisher and the ‘Hacktivist’ Threat to Critical Infrastructure

机译：大鱼，小鱼，关键基础设施：菲尼亚斯·费舍尔（Pineas Fisher）分析和关键组织的“黑客主义”威胁

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

The hacktivist threat actor is listed in many risk decision documents. Yet their tactics and techniques often remain a mystery. We create a MITRE ATT&CK^TM (ATT&CK) model of a well known hacktivist who goes under the pseudonym of Phineas Fisher, and map that threat to critical infrastructure. The analysis is derived from hacker manifestos, journalist reporting, and official government documentation. This analysis fills a gap in current threat models, to better define what skills and methods a determined hacker might employ. This paper also identifies seven essential mitigations which can be deployed by critical infrastructure operations and asset owners, to prevent such intrusions by hacktivists. We are in the process of contributing this threat actor into the MITRE ATT&CK^TM knowledge base.

机译：许多风险决策文件中都列出了黑客行为威胁者。然而，他们的战术和技巧通常仍然是个谜。我们创建一个MITER ATT＆CK ^{TM
（ATT＆CK）的模型，该模型以Phineas Fisher的笔名命名，并将这种威胁映射到关键基础架构。该分析来自黑客宣言，新闻记者报道和政府官方文件。该分析填补了当前威胁模型中的空白，以更好地定义确定的黑客可能采用的技能和方法。本文还确定了可以由关键基础架构运营和资产所有者部署的七个基本缓解措施，以防止黑客主义者入侵。我们正在协助这个威胁者加入MITER ATT＆CK
^{TM
知识库。}}

著录项

来源
《International Conference on Cyber Situational Awareness, Data Analytics and Assessment》|2020年|1-7|共7页
会议地点
作者
Peter Maynard; Kieran McLaughlin;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
ATTCK; Critical Infrastructure; hacktivist;

机译：ATT＆CK;关键基础设施;黑客主义者;

相似文献

外文文献
中文文献
专利

1. Cyber Threats, Harsh Environment and the European High North (EHN) in a Human Security and Multi-Level Regulatory Global Dimension: Which Framework Applicable to Critical Infrastructures under “Exceptionally Critical Infrastructure Conditions” (ECIC)? [J] . Sandra Cassotta, Roman Sidortsov, Christer Pursiainen, Beijing Law Review . 2019,第2期

机译：在人的安全和全球多层次监管的全球范围内的网络威胁，严酷环境和欧洲高地（EHN）：在“异常关键基础设施条件”（ECIC）下，哪种框架适用于关键基础设施？
2. Legal Status of Maximum Sustainable Yield Concept in International Fisheries Law and Its Adoption in the Marine Fisheries Regime of Bangladesh: A Critical Analysis [J] . Al Arif Abdullah International journal of marine and coastal law . 2017,第3期

机译：最大可持续产量概念在国际渔业法中的法律地位及其在孟加拉国海洋渔业中的采用：批判性分析
3. Are critically endangered fish back on the menu? Analysis of UK fisheries data suggest post-ban landings of prohibited skates in European waters [J] . Simpson Samantha J., Sims David W. Marine policy . 2016,第JULa期

机译：菜单上是否还列出了濒临灭绝的鱼类？对英国渔业数据的分析表明，禁水冰鞋在欧洲水域之后的禁令登陆
4. Critical Analysis Of The Regulation Regarding Traditional Fishermen In Grey-Area Of Indonesia-Malaysia [C] . Ida Kurnia, Imelda Martinelli, Ade Adhari International Conference on Maritime and Archipelago . 2019

机译：关于印度尼西亚 - 马来西亚灰色区域传统渔民监管的批判性分析
5. SCADA Honeynets: The attractiveness of honeypots as critical infrastructure security tools for the detection and analysis of advanced threats. [D] . Wade, Susan Marie. 2011

机译：SCADA Honeynets：蜜罐作为检测和分析高级威胁的关键基础结构安全工具的吸引力。
6. Anecdotal Historical and Critical Commentaries on Genetics: R. A. Fishers 1943 Unravelling of the Rhesus Blood-Group System [O] . A. W. F. Edwards 2007

机译：遗传学的轶事历史和批判评论：费舍尔（R. A. Fisher）1943年对恒河猴血型系统的揭示
7. Cyber Threats, Harsh Environment and the European High North (EHN) in a Human Security and Multi-Level Regulatory Global Dimension: Which Framework Applicable to Critical Infrastructures under “Exceptionally Critical Infrastructure Conditions” (ECIC)? [O] . Sandra Cassotta, Roman Sidortsov, Christer Pursiainen, 2019

机译：网络威胁，恶劣环境和欧洲高北（EHN）在人类安全和多级监管全球维度中：适用于“特殊关键基础设施条件”（ECIC）下的关键基础设施的框架？

Big Fish, Little Fish, Critical Infrastructure: An Analysis of Phineas Fisher and the ‘Hacktivist’ Threat to Critical Infrastructure

摘要

著录项

相似文献

相关主题

期刊订阅