Dark Reading

Threat-Modeling Basics Using MITRE ATT&CK

The MITRE ATT&CK framework, launched in 2015, has become the de facto method for cataloging attacks and understanding an organization's defensive capabilities. This information is also useful to risk ...
Forbes

Application Threat Modeling Myths Debunked

Application threat modeling has gotten a bad rap over the years. Security leaders looking to implement application threat modeling with their product teams must contend with stakeholders who see it as ...
Android Police

Threat modeling: What it is and how it can protect you online

John is a professional author, currently publishing evergreen and feature articles for Android Police. He discovered his passion for writing when he was very young, and enjoys how it challenges him ...
InfoQ

Developer-Driven Threat Modeling

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources.
CSOonline

Using threat modeling to prove security success

Archie Agarwal shares experience and insights on how to move threat modeling from a confusing exercise to a powerful tool for security leaders Do you threat model? If so, when and how do you use it?
The Next Web

How to implement a ‘threat model’ to beef up your organization’s security

In a world where cyber threats continue to grow in complexity and quantity each year, threat modeling is one of the most advantageous and practical tools organizations can use to shore up security.
CSOonline

7 threat modeling mistakes you’re probably making

Threat modeling, according to OWASP, is a structured approach for identifying, quantifying and addressing the security risks associated with an application. It essentially involves thinking ...