MITRE ATT&CK v18 Released with Major Detection and ICS Enhancements
Category:Threat Intelligence / Framework
MITRE released ATT&CK v18, introducing expanded detection mappings for mobile and industrial control systems. This version refines behavioral techniques for hybrid environments and updates tactics related to credential access and lateral movement.
CORTEX Protocol Intelligence Assessment
Business Impact: Updated ATT&CK mappings improve SOC and threat hunting accuracy. Technical Context: v18 adds new sub-techniques for OT/ICS and adjusts detection criteria for cloud attacks.
Strategic Intelligence Guidance
- Integrate ATT&CK v18 techniques into detection frameworks.
- Train analysts on new mobile and ICS sub-techniques.
- Align SIEM correlation rules with updated tactics.
- Review ATT&CK Navigator layers for environment coverage.
Vendors
Targets
Intelligence Source: MITRE unveils ATT&CK v18 with updates to detections, mobile, ICS | Oct 30, 2025