Latest News
PRE-ATT&CK Techniques: The Key to Preventing Cyber Attacks
Reading Time: 4 minutes
Cyber attackers are now targeting any kind of information that can reward them: from personal data to corporate information to government secrets. However, behind each attack, there is a long chain of thoroughly selected actions.
While most organizations focus their attention on protecting the perimeter of their corporate network, the cybersecurity experts from MITRE advise expanding their ability to understand the behavior of adversaries.
Hackers select their victims long before their attack and carefully collect information about them before executing any malicious actions. Nowadays, the internet provides them with a great variety of data about almost any company, so adversaries can learn enough not only about a company’s activity but also about its cybersecurity weak spots.
To help security officers understand how hackers choose their victims and prevent an attack before it even begins, MITRE, a non-profit corporation that tackles cybersecurity problems, has created the PRE-ATT&CK matrix that is a part of the Adversarial Tactics, Techniques, and Common Knowledge, also known as the ATT&CK framework.
What is the PRE-ATT&CK matrix?
PRE-ATT&CK allows security officers to prevent a possible attack before an adversary penetrates into their network. The PRE-ATT&CK matrix contains 15 tactics and more than 150 techniques that explain the adversary planning, information gathering, reconnaissance, and setup when preparing their attack.
The tactics in PRE-ATT&CK explain the typical adversarial techniques and procedures for selecting a victim, obtaining information about it, and launching the cyber attack. This information provides security officers with a broader understanding of adversary behavior before any indicators of compromise appear.
PRE-ATT&CK allows security officers to find answers on the following questions:
- Are there any signs that cyber attackers are targeting your organization?
- What adversary techniques may an attacker apply to your company?
- How can you analyze the collected data to notice a hacker’s interest into your organisation?
Analyzing the PRE-ATT&CK techniques and tactics, defenders can get a better understanding of cyber attacker activities. They can use this knowledge to make appropriate decisions on what technical measures and mitigations to adopt in order to reduce hacker’s chances on properly preparing an attack on their organization.
How to use the PRE-ATT&CK matrix
The PRE-ATT&CK matrix provides detailed information about how adversaries prepare for arranging a cyber attack. The PRE-ATT&CK tactics explain what goals an aversary sets for themselves, while each technique shows how these goals can be achieved. The tactics in PRE ATT&CK reflect such attacker goals:
- Priority definition
- Victim selection
- Gathering information about a victim
- Victim weakness identification
- Persona development
- Capabilities setup
The PRE-ATT&CK techniques show how adversaries perform each tactic and allow enterprise defenders to track and organize attack statistics and patterns.
Priority definition
Using this tactic, an adversary weighs all the pros and cons of arranging an attack. They set their goals by considering how the information they are getting can benefit them and what kind of information has the biggest value for them. At this stage, cyber criminals compare the cost of cyber intrusions with the expected reward from their activity.
Victim selection
Taking into account their priorities, adversaries begin to look for their victims. They take their strategic considerations and then narrow them down tactically and operationally until a victim is selected. Depending on their target, adversaries can decide to attack it directly or through business partners. However, for making the right decision, hackers usually need to collect all possible information about their target.
Gathering information about the victim
After adversaries select their victim, they can’t blindly execute an attack. They first need to gather all information about their target: the type of technical system the victim uses, the personnel that works for the victim, and the victim organization itself.
Attackers usually collect information about their victims by using open-source intelligence tools and techniques. Such data about a victim as organization’s domains, email address format, names of top personnel can be freely found online by combining phishing and social engineering techniques.
While organizations can’t minimize their presence on the internet nowadays, security officers can consider how the public data of their company may be abused and define vectors of possible attacks.
Identifying victim weaknesses
By analyzing all the data collected at the previous stage, adversaries can find potential weaknesses of their victim. The discovered vulnerabilities become the basis of creating a plan of the attack. Weakness identification also allows adversaries to test and configure their own systems for attack execution.
At this stage, defenders can consider the Pyramid of Pain that will help them define the importance of indicators of compromise.
Persona development
Though the internet is a place where you can find everyone, it’s also a place where anyone can create a fake persona. A hacker can develop their persona by providing a fake email address and personal information to one of the social media sites. Getting in contact with a potential victim, an adversary can gain greater access to the victim’s personal profile with an intention to abuse this data later.
Unfortunately, most social media don’t inform their users whether someone viewed their profile. However, organizations can establish tight privacy control for their corporate accounts in social media by establishing trusted connections, blocking suspicious content, and educating their employees.
Capabilities setup
After getting in contact with potential victims, an adversary will establish capabilities for arranging an attack. Though some cyberc riminals may be really technology-savvy, most of them look for the easiest way to maintain their own internet infrastructure.
There are plenty of cost-effective ways to anonymously use servers, autonomous systems, and networks. Adversaries often abuse this anonymity for achieving their malicious goals. Paying just several dollars per month, they can get a virtual presence enough for compromising your organization.
Even if your logs detected adversarial activity from a specific server, it would be very difficult to legally pursue that source because of the lack of evidence. Though it may seem nearly impossible to detect an adversary at this stage of the cyber attack, security teams should pay attention to behavioral patterns that indicate hacker’s activity.
While PRE-ATT&CK describes only the adversarial behavior before an attack, MITRE has recently integrated some PRE-ATT&CK techniques into ATT&CK to let security teams define the potential vectors of attacks on their organizations and improve their security measures accordingly.
Enterprises that integrate PRE-ATT&CK into their security best practices can significantly enhance their protection measures and prevent adversaries long before they actually begin their malicious campaigns.
Conclusion
It’s not a secret that cyber attacks are now more targeted than any time before. Cyber criminals carefully select their next victim and conduct a thorough investigation before penetrating into your corporate network. Using the PRE-ATT&CK matrix from MITRE, security teams can reveal the early signs of adversarial behavior and prevent an attack before hackers compromise your organization.
This article is a contribution from Marcell Gogan. Marcell is a specialist within digital security solutions, business design and development, virtualization and cloud computing, R&D projects, establishment and management of software research direction – working with Ekran System. He also loves writing about data management and cybersecurity.
Source: Latest News on European Gaming Media Network
This is a Syndicated News piece. Photo credits or photo sources can be found on the source article: PRE-ATT&CK Techniques: The Key to Preventing Cyber Attacks
NetBet, a leading online gaming platform, has announced an exciting new partnership with world-renowned boxing & MMA podcast the Fight Disciples, co-hosted by award-winning broadcasters Adam Catterall and Nick Peet.
The partnership will span some of the UFC’s biggest events, including Max Holloway vs. Dustin Poirier at UFC 318, as well as major upcoming boxing bouts.
This partnership builds on NetBet’s recent announcement as the official betting partner of the UFC in the UK and other parts of Europe. It will play a key role in boosting visibility for NetBet’s popular UFC Predictor Game. As part of the collaboration, NetBet branding will feature across all Fight Disciples UFC content, including behind-the-scenes access and exclusive fighter interviews.
Part of this deal will also see the Fight Disciples and NetBet team up to provide all-encompassing coverage for three huge upcoming boxing fights; Oleksandr Usyk vs Daniel Dubois, Katie Taylor vs Amanda Serrano and Saul ‘Canelo’ Alvarez vs Terrance Crawford.
Adam Catterall, co-host of the Fight Disciples Podcast, said: “We’ve always prided ourselves on being the voice of the fight fan, so teaming up with NetBet – the official sportsbook and betting partner of the UFC – is a massive moment for us. This partnership gives us the opportunity to get even closer to the action and, more importantly, bring our audience along with us. Whether it’s behind-the-scenes insight, exclusive content, or on-the-ground access at the biggest events, it’s all about delivering that front-row feeling to our listeners.”
Tristan Wootton, Head of UK at NetBet added: “With NetBet making huge waves in the world of fight sports, this partnership with the Fight Disciples represents another exciting opportunity with regard to brand development. We feel confident that our players will enjoy the engaging content produced from this partnership, with so many brilliant UFC and boxing shows just on the horizon!”
The post NetBet Partners with Fight Disciples appeared first on European Gaming Industry News.
Soft2Bet continues its strategic expansion in Romania through its rapidly growing online entertainment brand, Don.ro, which has entered a multi-year agreement as the main sponsor of CFR 1907 Cluj, one of Romania’s leading football clubs.
Beginning with the 2025-26 Liga 1 season, leading Romanian brand Don.ro’s logo will feature prominently on CFR Cluj’s home and away kits, training gear, and throughout the “Dr. Constantin Rădulescu” stadium. The partnership with CFR Cluj also includes a slate of live and digital activations powered by Soft2Bet’s innovative platform, designed to deepen fan engagement.
“We are excited to announce our partnership with Don.ro, a Romanian brand that shares our values of performance, professionalism, and the desire to build something lasting. The fact that Don.ro is becoming the main partner of our club is both a validation of the work we do every day and an important step in strengthening CFR Cluj’s image both nationally and internationally.
We are pleased to have a dynamic partner by our side, one with a modern vision who believes in the power of sport to inspire and bring people together. Moreover, Don.ro has chosen to offer each season ticket holder this season an official jersey — a gesture of appreciation for the passion and loyalty with which they support us.” — Cristian Balaj, CFR Cluj President.
The partnership between Soft2Bet and CFR Cluj brings together Don.ro’s award-winning online gaming brand and a club with a rich history of success, including eight league titles, four Romanian Cups, and four Super Cups. Both sides are driven by a commitment to high performance, bold ambition, and fresh ideas, which makes this collaboration especially well-aligned.
“We are honored to join the CFR Cluj family, a symbol of excellence in Romanian football. This partnership reflects the shared values that bring us together — performance, responsibility, and respect for the community.
At Don.ro, we are committed to promoting a safe and balanced entertainment environment, and through our collaboration with CFR Cluj, we aim to deliver a strong message about the importance of responsible play, both on and off the field.” — Marius Mirasovici, Official representative of Don.ro brand
The partnership is designed to deliver real value to Don.ro’s players and the wider local community. With Soft2Bet’s backing, Don.ro will launch a range of activations tailored to Romanian audiences, such as exclusive match-day experiences, localised campaigns, community events, and responsible gaming initiatives, bringing fans closer to the action and rewarding their loyalty in meaningful ways.
Oksana Tsyhankova, Chief Marketing Officer at Soft2Bet, highlighted: “At Soft2Bet, we excel in building powerful and award-winning brands that forge deep connections with players through localised experiences. Don.ro’s partnership with CFR Cluj embodies this vision,combining a top-performing club with our drive for tailored gamified experiences, product excellence, and a passion for performance.”
Launched in 2024 and recognised as “Best Launch of the Year” at the 12th Meeting of Gambling Professionals, Don.ro delivers over 3,484 casino games, a full live-dealer lineup, and a complete sportsbook. The platform runs on Soft2Bet’s proprietary MEGA (Motivational Engineering Gaming Application) technology, which enhances player engagement through mission-based features and in-game challenges.
The post Soft2Bet’s brand Don.ro Becomes Main Sponsor of CFR Cluj in Multi-Year Agreement appeared first on European Gaming Industry News.
Here are this weeks latest slots releases compiled by European Gaming
PG Soft has served up a classic slot with its Diner Frenzy Spins. This is a 5-reel, 4-rows video slot featuring connecting ways and sticky symbol respins. Diner Frenzy Spins is set within a vibrant, retro-futuristic diner with a buzzy atmosphere thanks to a playful soundtrack. During any spin, the Mystery Respin may be randomly triggered while the reels are spinning.
ELA Games calls back to a classic yet luxurious gaming experience with its new title, Juicy Crystal. The game offers a unique and modern twist on the beloved and familiar fruit machine format, featuring timeless symbols and rich visuals. The studio’s trademark attention to detail and quality delivers a game that’s exciting, memorable and elegant.
Amusnet presents its newest Online Casino portfolio expansion – a royal-themed slot filled with exciting bonus features. The release adds to the fun of the player-favourite Extra Crown game series, this time with six reels and 100 paylines, top-notch graphics and a vibrant soundtrack. A total of 11 symbols are scattered across the now six reels and 40 fixed paylines, along with some special features that make the gameplay more engaging and fun.
Play’n GO illuminate their classic Moon Princess universe once more with Moon Princess Stargazing, a grid slot set among icy stars and rising multipliers. Set beyond Neptune in the icy reaches of the Kuiper Belt, Moon Princess Stargazing marks a radiant new chapter in one of Play’n GO’s most celebrated series. Players reunite with Star, Nova and Astra – the celestial trio whose powers help forge constellation connections and unlock sky-high wins.
Step into the golden sands of Ancient Egypt with Ra’s Relics Bonanza, a thrilling 6×5 cascading slot adventure from Booming Games! Land 8 or more matching symbols anywhere on the reels to secure a win, as winning symbols vanish and new ones tumble down, unlocking endless chances for treasure. Keep an eye on the Divine Scarab, collecting scatter symbols throughout the base game and triggering Free Spins at any moment.
The post Week 27/2025 slot games releases appeared first on European Gaming Industry News.
NetBet Partners with Fight Disciples
Soft2Bet’s brand Don.ro Becomes Main Sponsor of CFR Cluj in Multi-Year Agreement
Week 27/2025 slot games releases
NODWIN Gaming partners with Esports World Cup Foundation to manage media rights sales across South Asia
Current Games Activates the Nitro on Neon-Soaked Arcade Combat Racer: Cyber Clutch: Hot Import Nights
Green light for international expansion: NOVOMATIC acquires French casino group
Entain Completes Full Rollout of Group BetStation Across All UK and Ireland Retail Locations
Taichi Tech Limited Fined £170,000 for Unfair Terms and Conditions
Turnover of Legal Gambling Market in Hungary Increases
MGA Signs MoU with MFSA
-
Latest News3 months agoExclusive Q&A With Bar Konson, Chief Business Development Officer at NuxGame
-
Latest News2 months agoWeek 17/2025 slot games releases
-
Latest News2 months agoFortuna Partners with 2025 UEFA Under-21 EURO
-
Latest News3 months ago
Esports World Cup Foundation Confirms Full Game Lineup, Schedule, and Club Championship Rules for EWC 2025
-
Latest News2 months agoELA Games Receives Key Nomination at EGR Marketing & Innovation Awards
-
Latest News3 months ago
ACR POKER’S NEXT HIGH STAKES ADVENTURE TAKES PLAYERS TO MONTENEGRO FOR PRESTIGIOUS SUPER HIGH ROLLER SERIES
-
Latest News2 months agoBojoko.com Surpasses €100 Million in All-Time Deposits Milestone
-
Latest News2 months agoLeoVegas Group to Open a New Office in Leeds
You must be logged in to post a comment Login