Goto

Collaborating Authors

 mitre framework


IBM QRadar Advisor with Watson boosted with MITRE framework

#artificialintelligence

This article originally appeared on ZDNet. IBM Security has expanded the capabilities of the QRadar Advisor with Watson with attack techniques gleaned from the MITRE framework. On Wednesday, Big Blue said the artificial intelligence (AI)-based security platform has been bolstered with a repository of cybercriminal techniques and cases, which will "allow it to learn from security response activities within an organization." In addition, the AI platform will now be referencing the open-source MITRE ATT&CK knowledge base, which contains records of real-world attack scenarios, techniques, and exploits used to compromise enterprise security. Within the repository, you can find everything from attack vectors based on HTTP to the Dynamic Data Exchange, movement, areas of compromise, the consequences of infection, and what defenders can expect in the future.