APT Groups Exploiting Governance and Compliance Frameworks as Attack Surfaces

First reported

21.11.2025 22:11

Last updated

1 unique sources, 1 articles

Summary

Hide ▲

Advanced persistent threat (APT) groups are increasingly exploiting gaps in governance, risk, and compliance (GRC) frameworks as attack surfaces. Mohammed Almunajam from Tuwaiq Academy highlights that attackers are targeting weaknesses in governance approvals, compliance cycles, and investigation workflows, rather than just exploiting code. This trend has been observed in recent cybercrime and digital forensic investigations, indicating a shift in attacker strategies. Almunajam will present the "6 Black Hat Laws," a new behavioral security framework, at Black Hat Middle East and Africa 2025 to help enterprises combat these threats.

Timeline

21.11.2025 22:11 1 articles · 23h ago

APT Groups Exploiting Governance and Compliance Frameworks
APT groups are increasingly targeting weaknesses in governance, risk, and compliance (GRC) frameworks as attack surfaces. This trend has been observed in recent cybercrime and digital forensic investigations. Mohammed Almunajam from Tuwaiq Academy will present the "6 Black Hat Laws" framework at Black Hat Middle East and Africa 2025 to help enterprises combat these threats.
Show sources

Hack the Hackers: 6 Laws for Staying Ahead of the Attackers — www.darkreading.com — 21.11.2025 22:11
Open in new tab

Information Snippets

APT groups are exploiting governance, risk, and compliance (GRC) frameworks as attack surfaces.
First reported: 21.11.2025 22:11

1 source, 1 article
Show sources
- Hack the Hackers: 6 Laws for Staying Ahead of the Attackers — www.darkreading.com — 21.11.2025 22:11
Attackers are targeting weaknesses in governance approvals, compliance cycles, and investigation workflows.
First reported: 21.11.2025 22:11

1 source, 1 article
Show sources
- Hack the Hackers: 6 Laws for Staying Ahead of the Attackers — www.darkreading.com — 21.11.2025 22:11
Mohammed Almunajam observed this trend during cybercrime and digital forensic investigations.
First reported: 21.11.2025 22:11

1 source, 1 article
Show sources
- Hack the Hackers: 6 Laws for Staying Ahead of the Attackers — www.darkreading.com — 21.11.2025 22:11
Almunajam will present the "6 Black Hat Laws" framework at Black Hat Middle East and Africa 2025.
First reported: 21.11.2025 22:11

1 source, 1 article
Show sources
- Hack the Hackers: 6 Laws for Staying Ahead of the Attackers — www.darkreading.com — 21.11.2025 22:11
The framework aims to help enterprises predict attacks by understanding how adversaries exploit logic, timing, and decision-making weaknesses.
First reported: 21.11.2025 22:11

1 source, 1 article
Show sources
- Hack the Hackers: 6 Laws for Staying Ahead of the Attackers — www.darkreading.com — 21.11.2025 22:11