TY - JOUR
T1 - Focusing on the Weakest Link
T2 - A Similarity Analysis on Phishing Campaigns Based on the ATT&CK Matrix
AU - Shin, Youngsup
AU - Kim, Kyoungmin
AU - Lee, Jemin Justin
AU - Lee, Kyungho
N1 - Publisher Copyright:
© 2022 Youngsup Shin et al.
PY - 2022
Y1 - 2022
N2 - In the past, phishing techniques were a common means of attack carried out by individuals or small groups via spam mail on a randomly selected target. However, in recent years, phishing techniques have been adopted by advanced persistent threat (APT) groups to attack organizations such as the Sony Pictures Enterprise and Korea Hydro & Nuclear Power. As such, our study aims to analyze the past campaigns conducted by the APT groups. We aim to propose a countermeasure that corresponds to the phishing campaign by collecting datasets pertaining to the phishing techniques. Based on our past study, we collected private and public data from 16 different cases that utilize a phishing attack. Our research adopted MITRE's ATT & CK framework and tactic, techniques, and procedures (TTPs) to extract and examine the various campaigns. The framework proposed in this study makes considerable contributions to both the private and public sectors, as the framework aids the organizations in counteracting the malicious threats performed by the APT groups.
AB - In the past, phishing techniques were a common means of attack carried out by individuals or small groups via spam mail on a randomly selected target. However, in recent years, phishing techniques have been adopted by advanced persistent threat (APT) groups to attack organizations such as the Sony Pictures Enterprise and Korea Hydro & Nuclear Power. As such, our study aims to analyze the past campaigns conducted by the APT groups. We aim to propose a countermeasure that corresponds to the phishing campaign by collecting datasets pertaining to the phishing techniques. Based on our past study, we collected private and public data from 16 different cases that utilize a phishing attack. Our research adopted MITRE's ATT & CK framework and tactic, techniques, and procedures (TTPs) to extract and examine the various campaigns. The framework proposed in this study makes considerable contributions to both the private and public sectors, as the framework aids the organizations in counteracting the malicious threats performed by the APT groups.
UR - http://www.scopus.com/inward/record.url?scp=85129948208&partnerID=8YFLogxK
U2 - 10.1155/2022/1699657
DO - 10.1155/2022/1699657
M3 - Article
AN - SCOPUS:85129948208
SN - 1939-0122
VL - 2022
JO - Security and Communication Networks
JF - Security and Communication Networks
M1 - 1699657
ER -