The Lockheed Cyber Kill Chain is a framework that describes the seven phases of a cyberattack. It was developed by Lockheed Martin in 2011 and has since change into a broadly accepted mannequin for understanding how cyberattacks are carried out. The seven phases of the Lockheed Cyber Kill Chain are:
- Reconnaissance: The attacker gathers details about the goal, resembling its community infrastructure, working programs, and purposes.
- Weaponization: The attacker develops or acquires malware or different instruments that will probably be used to take advantage of vulnerabilities within the goal’s programs.
- Supply: The attacker delivers the malware or different instruments to the goal, sometimes via phishing emails, malicious web sites, or USB drives.
- Exploitation: The attacker exploits vulnerabilities within the goal’s programs to achieve entry to the community and its knowledge.
- Set up: The attacker installs malware or different instruments on the goal’s programs to keep up entry and management over the community.
- Command and management: The attacker establishes a command and management channel to speak with the malware or different instruments put in on the goal’s programs.
- Actions on aims: The attacker makes use of the malware or different instruments to realize their aims, resembling stealing knowledge, disrupting operations, or launching additional assaults.
The Lockheed Cyber Kill Chain is a useful software for understanding how cyberattacks are carried out and for growing methods to defend towards them. By understanding the completely different phases of the kill chain, organizations can higher put together for and reply to cyberattacks.
