15:["$","div",null,{"children":[["$","section",null,{"children":[["$","$L24",null,{"className":"PageHeader_backgroundVideo__ujRYj","src":"https://player.vimeo.com/video/879797927?h=b1ef0cd1cc"}],"$undefined",["$","div",null,{"children":["$","div",null,{"style":{"maxWidth":"800px"},"children":["$","div",null,{"children":[["$","h1",null,{"children":"Scenario Intelligence Platform","data-accent-color":"$undefined","style":"$undefined","className":"rt-Heading rt-r-size-7 md:rt-r-size-8 rt-r-ta-center Heading_heading__Z2SWQ"}],["$","div",null,{"children":["$","span",null,{"children":"Browse our collection of ready-to-use, human-curated threat scenarios that eliminate research time and strengthen your defenses immediately. Each scenario is supported by human-curated step-by-step implementation guides and customizable templates.","data-accent-color":"$undefined","style":{"display":"block"},"className":"rt-Text rt-r-ta-center"}],"style":"$undefined","className":"rt-Box rt-r-px-0 md:rt-r-px-9"}],["$","div",null,{"children":[["$","$L25","76741",{"link":{"target":"","title":null,"label":"Create Your Account","url":"https://content.venation.digital/auth/register","type":"entry","element":{"id":"12159","uri":"auth/register","title":"Register","__typename":"registerPage_registerPage_Entry"},"__typename":"linkField_Link"},"style":{"boxSizing":"border-box"},"children":["$","button",null,{"data-disabled":"$undefined","data-accent-color":"","data-radius":"$undefined","style":"$undefined","className":"rt-reset rt-BaseButton rt-r-size-3 rt-variant-solid rt-Button Button_base__t7GeV Button_primary__EhHZP","disabled":"$undefined","children":["$undefined",["$","span",null,{"children":"Create Your Account","data-accent-color":"$undefined","style":"$undefined","className":"rt-Text rt-r-weight-bold"}],"$undefined","$undefined"]}]}],["$","$L25","28473",{"link":{"target":"","title":null,"label":"Request Strategic Briefing","url":"Intercom('show');","type":"intercom","element":null,"__typename":"linkField_Link"},"style":{"boxSizing":"border-box"},"children":["$","button",null,{"data-disabled":"$undefined","data-accent-color":"","data-radius":"$undefined","style":"$undefined","className":"rt-reset rt-BaseButton rt-r-size-3 rt-variant-ghost rt-Button Button_base__t7GeV","disabled":"$undefined","children":["$undefined",["$","span",null,{"children":"Request Strategic Briefing","data-accent-color":"$undefined","style":"$undefined","className":"rt-Text rt-r-weight-bold"}],"$undefined","$undefined"]}]}]],"style":"$undefined","className":"rt-Flex rt-r-fd-column xs:rt-r-fd-row rt-r-ai-center rt-r-jc-center rt-r-gap-4"}]],"style":"$undefined","className":"rt-Flex rt-r-fd-column rt-r-gap-4"}],"className":"rt-Box"}],"style":"$undefined","className":"rt-Flex rt-r-jc-center PageHeader_content__7v2Pg"}]],"style":"$undefined","className":"rt-Section rt-r-size-3 PageHeader_base__bPWzS"}],["$","div",null,{"children":[["$","section",null,{"children":["$","div",null,{"children":[["$","h2",null,{"children":"Trending Scenarios","data-accent-color":"$undefined","style":"$undefined","className":"rt-Heading rt-r-size-4 md:rt-r-size-6 Heading_heading__Z2SWQ"}],["$","div",null,{"children":["$","$L26",null,{"items":[{"id":"76717","title":"NEW Export to Excel","slug":"new-export-to-excel","uri":"app/scenarios/new-export-to-excel","postDate":"2026-03-31T07:33:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":false,"releaseDate":null,"releaseDateString":null,"image":[{"id":"76716","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/Untitled-design3.png","title":"Usecase Excel","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/Untitled-design3.png","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/Untitled-design3.png","width":1920,"__typename":"images_Asset"}],"summary":"

We created this feature because risk registers often fall apart the moment you need to justify each risk against threats relevant to your context.

This risk register 'Excel' export connects risk to real threat scenarios, helping you move from abstract scores to concrete explanations. This allows you to defend decisions, align stakeholders, and make sure risk discussions actually land internally.

","__typename":"scenarios_scenario_Entry","promotions":["knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"13449","title":"Exploiting Unpatched or Zero-day Vulnerability in VPN or Firewall Solution","slug":"exploiting-unpatched-or-zero-day-vulnerability-in-vpn-or-firewall","uri":"app/scenarios/exploiting-unpatched-or-zero-day-vulnerability-in-vpn-or-firewall","postDate":"2023-06-19T20:48:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":false,"releaseDate":null,"releaseDateString":null,"image":[{"id":"10740","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SIMPLIFY.jpg","title":"USE CASE SIMPLIFY","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SIMPLIFY.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SIMPLIFY.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

When threat actors exploit unpatched or zero-day vulnerabilities in VPN solutions, their objective is commonly to gain unauthorized access to a target's network, circumventing security measures and potentially leading to data theft, malware deployment, or establishing a foothold for further malicious activities. This scenario outlines the attack chains employed by threat actors in such cases, derived from a comprehensive analysis of 2022-24 data and industry reporting.

","__typename":"scenarios_scenario_Entry","promotions":["knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"12934","title":"Most prevalent Business Email Compromise scams","slug":"business-email-compromise","uri":"app/scenarios/business-email-compromise","postDate":"2023-05-22T21:12:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":false,"releaseDate":null,"releaseDateString":null,"image":[{"id":"10740","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SIMPLIFY.jpg","title":"USE CASE SIMPLIFY","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SIMPLIFY.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SIMPLIFY.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

Business Email Compromise (BEC) deceive victims into transferring funds or valuable items to the attacker. This scenario highlights key BEC attack sequences, derived from a thorough review and analysis of 2023 data and industry reports, with a particular focus on techniques such as supplier invoice scams, executive impersonation, gift card scams, email account takeover, and payroll diversion attacks.

","__typename":"scenarios_scenario_Entry","promotions":["knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"12086","title":"Software supply chain manipulation gaining unauthorised access to client environments","slug":"software-supply-chain-manipulation","uri":"app/scenarios/software-supply-chain-manipulation","postDate":"2023-03-10T07:55:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":false,"releaseDate":null,"releaseDateString":null,"image":[{"id":"10646","height":2214,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SIMPLIFY.png","title":"USE CASE SIMPLIFY","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SIMPLIFY.png","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SIMPLIFY.png","width":3648,"__typename":"images_Asset"}],"summary":"

Software is used in various aspects of a companies supply chain and adversaries actively compromise provider solutions to manipulate software and obtain indirect or direct unauthorized entry into a victim company. Our scenario offers a comprehensive perspective on the four key elements inherent to supply chain attacks, detailing both shared and distinct aspects within their respective attack chains.

","__typename":"scenarios_scenario_Entry","promotions":["knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"27044","title":"Threats to Machine Learning’s Underlying Models","slug":"threats-to-machine-learnings-underlying-models","uri":"app/scenarios/threats-to-machine-learnings-underlying-models","postDate":"2024-01-10T14:57:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":true,"releaseDate":"2024-01-12T00:00:00+00:00","releaseDateString":"January 12th","image":[{"id":"10740","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SIMPLIFY.jpg","title":"USE CASE SIMPLIFY","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SIMPLIFY.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SIMPLIFY.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

This Scenario focuses on several different ways that ML models can be targeted by attackers to manipulate the results. This scenario identified attacks both theoretical and those that have been observed in the wild. These attacks exploit vulnerabilities in LLM supply chains, as seen in incidents like a poisoned model uploaded to a major LLM repository. The integration of ML in systems continues to increase the risk of evasion techniques, for example compromising malware detection neural networks.

","__typename":"scenarios_scenario_Entry","promotions":["knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"13460","title":"Phishing attacks using Adversary-in-the-middle, Mark of the web bypass, and Telephone-Oriented Attack Delivery methods","slug":"hishing-attacks-using-adversary-in-the-middle-mark-of-the-web-bypass-and-telephone-oriented-attack-delivery-methods","uri":"app/scenarios/hishing-attacks-using-adversary-in-the-middle-mark-of-the-web-bypass-and-telephone-oriented-attack-delivery-methods","postDate":"2023-06-19T22:16:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":false,"releaseDate":null,"releaseDateString":null,"image":[{"id":"10740","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SIMPLIFY.jpg","title":"USE CASE SIMPLIFY","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SIMPLIFY.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SIMPLIFY.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

Phishing aims to deceive victims into sharing sensitive information, obtaining data, or compelling certain actions that benefit the attacker, often employing social engineering tactics. Our scenario highlights key phishing attack sequences for clients, derived from current data and industry reporting, with a specific focus on techniques like Adversary-in-the-middle (AiTM), Mark of the web (MotW) bypass, and Telephone-Oriented Attack Delivery (TOAD) due to their notable significance and impact.

","__typename":"scenarios_scenario_Entry","promotions":["knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]}]}],"style":"$undefined","className":"rt-Box CourseScroller_sliderWrapper__MA3Vt"}]],"style":"$undefined","className":"rt-Flex rt-r-fd-column rt-r-ai-stretch rt-r-gap-6"}],"style":"$undefined","className":"rt-Section rt-r-size-1"}],["$","section",null,{"children":["$","div",null,{"children":[["$","h2",null,{"children":"Trending Systems","data-accent-color":"$undefined","style":"$undefined","className":"rt-Heading rt-r-size-4 md:rt-r-size-6 Heading_heading__Z2SWQ"}],["$","div",null,{"children":["$","$L26",null,{"items":[{"id":"76717","title":"NEW Export to Excel","slug":"new-export-to-excel","uri":"app/scenarios/new-export-to-excel","postDate":"2026-03-31T07:33:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":false,"releaseDate":null,"releaseDateString":null,"image":[{"id":"76716","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/Untitled-design3.png","title":"Usecase Excel","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/Untitled-design3.png","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/Untitled-design3.png","width":1920,"__typename":"images_Asset"}],"summary":"

We created this feature because risk registers often fall apart the moment you need to justify each risk against threats relevant to your context.

","__typename":"scenarios_scenario_Entry","promotions":"$27"},{"id":"46971","title":"How to Create Your Stakeholder Matrix","slug":"how-to-stakeholder-matrix","uri":"app/systems/how-to-stakeholder-matrix","postDate":"2024-06-21T14:13:00+00:00","section":"systems","typeHandle":"system","showCountdown":true,"releaseDate":"2024-07-14T00:00:00+00:00","releaseDateString":"July 14th","image":[{"id":"10739","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SAVE-TIME.jpg","title":"USE CASE SAVE TIME","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SAVE-TIME.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SAVE-TIME.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

A stakeholder matrix is a crucial tool for identifying and \nmanaging stakeholders in any project, including threat intelligence. It \nhelps you prioritize stakeholders based on their level of influence and \ninterest.

This system provides a foundational understanding how stakeholders can optimize their use of (cyber threat) intelligence in their daily activities. Enabling them to leverage output for decision support in mitigating cyber threats.

","features":[{"value":"System","__typename":"contentListTable_TableRow"},{"value":"Action Items","__typename":"contentListTable_TableRow"},{"value":"Templates","__typename":"contentListTable_TableRow"}],"moduleCount":3,"scenarioCount":0,"__typename":"systems_system_Entry","promotions":["reseller-pro-license","knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months","q4-newsletter-free-systems-code"]},{"id":"16977","title":"How to Create Your Cyber Threat Intelligence Process","slug":"how-to-cyber-threat-intelligence-process","uri":"app/systems/how-to-cyber-threat-intelligence-process","postDate":"2023-10-19T11:36:00+00:00","section":"systems","typeHandle":"system","showCountdown":true,"releaseDate":"2024-02-09T00:00:00+00:00","releaseDateString":"February 9th","image":[{"id":"10739","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SAVE-TIME.jpg","title":"USE CASE SAVE TIME","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SAVE-TIME.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SAVE-TIME.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

Fundamental to every cyber threat intelligence program is the creation of a cyber threat intelligence process. This system offers practical guidance on setting up a structure for establishing a strong cyber threat intelligence process

Creating a strong threat landscape deliverable is key to presenting a clear narrative on threat and risk to an organization. This system details our approach to building successful and impactful threat landscape deliverables.

Implementing scenario-based threat management is a proactive approach to anticipate and address potential cyber threats before they manifest into real-world incidents. In this system we detailed practical steps to start with scenario-based threat management.

This system provides our approach to model risk by utilizing Attack Flow. This is our preferred method for visualizing and understanding potential attack paths in your organization’s security infrastructure. Attack Flow is an easy and effective way to help security teams to see how various vulnerabilities and threats could be exploited in sequence, offering a dynamic view of potential attack paths.

","features":[{"value":"Action Items","__typename":"contentListTable_TableRow"},{"value":"System","__typename":"contentListTable_TableRow"},{"value":"Templates","__typename":"contentListTable_TableRow"}],"moduleCount":3,"scenarioCount":0,"__typename":"systems_system_Entry","promotions":["reseller-pro-license","knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months","q4-newsletter-free-systems-code"]},{"id":"13512","title":"How to Create Scenario-Based Incident Response Playbooks","slug":"how-to-incident-response-playbooks","uri":"app/systems/how-to-incident-response-playbooks","postDate":"2023-06-27T13:48:00+00:00","section":"systems","typeHandle":"system","showCountdown":true,"releaseDate":"2023-12-29T22:00:00+00:00","releaseDateString":"December 29th","image":[{"id":"10739","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SAVE-TIME.jpg","title":"USE CASE SAVE TIME","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SAVE-TIME.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SAVE-TIME.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

Building your own incident response playbooks is an effective way to prepare and respond to cyber threats quickly and effectively. This guide shows you how to make these playbooks fit your organization’s specific risks, so you’re always prepared for what’s out there. Making them threat-informed is even better, as this allows you to quickly adapt and align to developments in the threat landscape.

","features":[{"value":"Action Items","__typename":"contentListTable_TableRow"},{"value":"System","__typename":"contentListTable_TableRow"},{"value":"Template","__typename":"contentListTable_TableRow"}],"moduleCount":3,"scenarioCount":0,"__typename":"systems_system_Entry","promotions":["reseller-pro-license","knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months","q4-newsletter-free-systems-code"]}]}],"style":"$undefined","className":"rt-Box CourseScroller_sliderWrapper__MA3Vt"}]],"style":"$undefined","className":"rt-Flex rt-r-fd-column rt-r-ai-stretch rt-r-gap-6"}],"style":"$undefined","className":"rt-Section rt-r-size-1"}],["$","section",null,{"children":["$","div",null,{"children":[["$","h2",null,{"children":"Upcoming & Recent Updates","data-accent-color":"$undefined","style":"$undefined","className":"rt-Heading rt-r-size-4 md:rt-r-size-6 Heading_heading__Z2SWQ"}],["$","div",null,{"children":["$","$L26",null,{"items":[{"id":"75786","title":"How to Start Cyber Scenario Planning","slug":"how-to-cyber-scenario-planning","uri":"app/systems/how-to-cyber-scenario-planning","postDate":"2026-03-23T20:21:00+00:00","section":"systems","typeHandle":"system","showCountdown":true,"releaseDate":"2026-04-18T00:00:00+00:00","releaseDateString":"April 18th","image":[{"id":"10739","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SAVE-TIME.jpg","title":"USE CASE SAVE TIME","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SAVE-TIME.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SAVE-TIME.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

Cyber scenario planning is a risk management process that simulates potential cyber attacks to evaluate and improve an organization's preparedness, incident response, and resilience.

","features":[{"value":"System","__typename":"contentListTable_TableRow"},{"value":"Action Items","__typename":"contentListTable_TableRow"},{"value":"Templates","__typename":"contentListTable_TableRow"},{"value":"Workshop","__typename":"contentListTable_TableRow"}],"moduleCount":8,"scenarioCount":0,"__typename":"systems_system_Entry","promotions":["reseller-pro-license","knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months","q4-newsletter-free-systems-code"]},{"id":"66739","title":"How to Start Lean Cybersecurity","slug":"how-to-start-lean-cybersecurity","uri":"app/premium/how-to-start-lean-cybersecurity","postDate":"2024-06-18T12:13:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2025-10-04T00:00:00+00:00","releaseDateString":"October 4th","image":[{"id":"10741","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","title":"USE CASE THREAT INFORMED DEFENSES","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","width":1920,"__typename":"images_Asset"}],"summary":"$28","features":null,"moduleCount":1,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":["reseller-pro-license","knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"66745","title":"How to Setup Agile Security Operations","slug":"how-to-setup-agile-security-operations","uri":"app/premium/how-to-setup-agile-security-operations","postDate":"2024-06-18T12:13:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2025-10-17T00:00:00+00:00","releaseDateString":"October 17th","image":[{"id":"10741","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","title":"USE CASE THREAT INFORMED DEFENSES","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","width":1920,"__typename":"images_Asset"}],"summary":"$29","features":null,"moduleCount":1,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":["reseller-pro-license","knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"66727","title":"How to Setup an ISMS as Prompt","slug":"how-to-setup-isms-prompt","uri":"app/premium/how-to-setup-isms-prompt","postDate":"2024-06-18T12:13:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2026-02-21T00:00:00+00:00","releaseDateString":"February 21st","image":[{"id":"10741","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","title":"USE CASE THREAT INFORMED DEFENSES","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

Information Security Management Systems (ISMS) provide a structured approach to managing risks and safeguarding sensitive information. They allow companies to comply with security standards like ISO 27001, which are essential for landing clients in regulated industries. With an ISMS, organisations demonstrate their commitment to information security and are able to build trust with clients. Because of this, many security teams frequently pivot to professional Governance, Risk Management and Compliance (GRC) tools to manage the complexity of their ISMS. However, these tools are often expensive and demand significant time and effort to implement. While they offer robust solutions, the cost and resource requirements can be prohibitive for small teams with limited budgets. In this system, we learn how to build an ISMS as prompt system, allowing security teams to write, deploy and maintain policies at unprecedented speed.

","features":null,"moduleCount":1,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":["reseller-pro-license","knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"66709","title":"How to Setup Lean Vulnerability Management","slug":"how-to-setup-lean-vulnerability-management","uri":"app/premium/how-to-setup-lean-vulnerability-management","postDate":"2024-06-18T12:13:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2025-10-03T00:00:00+00:00","releaseDateString":"October 3rd","image":[{"id":"10741","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","title":"USE CASE THREAT INFORMED DEFENSES","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

Vulnerability management is the primary mechanism for protecting an organisation’s digital assets. It is well known that unpatched vulnerabilities are a leading cause of data breaches. Without proper metrics, it is difficult to measure the effectiveness of a vulnerability management programme. Many lean teams rely on metrics provided by scanning tools, but these are often too generic. Instead, organisations should focus on developing leading metrics that offer a clear, actionable view of their vulnerability landscape while helping flag potential performance issues early on.

","features":null,"moduleCount":1,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":["reseller-pro-license","knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"66741","title":"How to Build Scalable Asset Management","slug":"how-to-build-scalable-asset-management","uri":"app/premium/how-to-build-scalable-asset-management","postDate":"2024-06-18T12:13:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2025-10-10T00:00:00+00:00","releaseDateString":"October 10th","image":[{"id":"10741","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","title":"USE CASE THREAT INFORMED DEFENSES","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

An asset management policy is a vital part of an Information Security Management System (ISMS). It sets out how an organisation identifies, classifies and protects its information assets throughout their lifecycle. For asset management policies, that means understanding asset management fundamentals and translating them into clear rules. This is what helps repeatedly pass audits without spending huge consulting sums. However, the bigger challenge is building the free tools and processes that keep asset management running at scale so you stay ready for future compliance demands. In this system we demystify both aspects to help you build an inexpensive asset management policy that is infinitely adaptable.

","features":null,"moduleCount":1,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":["reseller-pro-license","knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"66725","title":"How to Boost Agile DevSecOps","slug":"how-to-boost-devsecops","uri":"app/premium/how-to-boost-devsecops","postDate":"2024-06-18T12:13:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2025-10-10T00:00:00+00:00","releaseDateString":"October 10th","image":[{"id":"10741","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","title":"USE CASE THREAT INFORMED DEFENSES","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

Many organisations aspire to implement agile DevSecOps. The benefits are clear: if you manage to unite development, security and operations into a cohesive process, security is finally treated as a shared responsibility in the organisation, rather than a final checkpoint. Armed with this ambition, many teams often race to embed agile development methodologies into their processes hoping that - eventually - DevOps and Security will integrate. However, even after adopting agile practices, many organisations struggle to bring true agility in DevSecOps to fruition. Why is that?

","features":[{"value":"System","__typename":"contentListTable_TableRow"},{"value":"Action List","__typename":"contentListTable_TableRow"}],"moduleCount":3,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":["reseller-pro-license","knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"66733","title":"How to Run Lean Management Reviews","slug":"how-to-run-lean-management-reviews","uri":"app/premium/how-to-run-lean-management-reviews","postDate":"2024-06-18T12:13:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2025-10-17T00:00:00+00:00","releaseDateString":"October 17th","image":[{"id":"10741","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","title":"USE CASE THREAT INFORMED DEFENSES","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","width":1920,"__typename":"images_Asset"}],"summary":"$2a","features":null,"moduleCount":1,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":["reseller-pro-license","knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]}]}],"style":"$undefined","className":"rt-Box CourseScroller_sliderWrapper__MA3Vt"}]],"style":"$undefined","className":"rt-Flex rt-r-fd-column rt-r-ai-stretch rt-r-gap-6"}],"style":"$undefined","className":"rt-Section rt-r-size-1"}],["$","section",null,{"children":["$","div",null,{"children":[["$","h2",null,{"children":"Available Premium Systems","data-accent-color":"$undefined","style":"$undefined","className":"rt-Heading rt-r-size-4 md:rt-r-size-6 Heading_heading__Z2SWQ"}],["$","div",null,{"children":["$","$L26",null,{"items":[{"id":"76068","title":"How to Create a Business Case for CTI","slug":"how-to-create-business-case-cti","uri":"app/premium/how-to-create-business-case-cti","postDate":"2024-06-18T12:13:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2026-03-27T00:00:00+00:00","releaseDateString":"March 27th","image":[{"id":"10738","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-REDUCE-TIME.jpg","title":"USE CASE REDUCE TIME","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-REDUCE-TIME.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-REDUCE-TIME.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

CTI is often discussed as a critical capability required for a holistic cybersecurity function. It’s in the maturity frameworks, regulations, or compliance requirements. Leaders know it’s important to monitor threats targeting their organization, so why is CTI often a hard sell?

CTI fails when its value remains invisible, something I’ve seen in many organizations. If value stays invisible, CTI can die a slow death even after being funded. There is no formal decision to stop investing in it, but budgets are trimmed, roles are repurposed, and priorities shift elsewhere. Over time, CTI becomes harder to defend because its impact was never clearly communicated.

","features":[{"value":"System","__typename":"contentListTable_TableRow"},{"value":"Action Items","__typename":"contentListTable_TableRow"},{"value":"Templates","__typename":"contentListTable_TableRow"}],"moduleCount":3,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":["reseller-pro-license","knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"45658","title":"How to Create Your Adversary Profiling System","slug":"how-to-create-your-adversary-profiling-system","uri":"app/premium/how-to-create-your-adversary-profiling-system","postDate":"2024-06-18T12:13:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2024-06-28T00:00:00+00:00","releaseDateString":"June 28th","image":[{"id":"10738","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-REDUCE-TIME.jpg","title":"USE CASE REDUCE TIME","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-REDUCE-TIME.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-REDUCE-TIME.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

Creating your own adversary profiling system empowers your \norganization to proactively identify and respond to emerging cyber actors effectively. In this system, we explore the foundational \nprinciples and practical steps involved in developing a customized \nadversary profiling system tailored to your unique cyber threat \nlandscape. From defining threat actor categories to analyzing behavioral\n patterns, we provide actionable guidance to enhance your security \nposture and stay ahead of evolving threats.

","features":[{"value":"System","__typename":"contentListTable_TableRow"},{"value":"Action Items","__typename":"contentListTable_TableRow"},{"value":"Templates","__typename":"contentListTable_TableRow"}],"moduleCount":3,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":["reseller-pro-license","knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"54110","title":"How to Assess the Maturity of Your Cyber Threat Intelligence Capability","slug":"assessing-cti-maturity","uri":"app/premium/assessing-cti-maturity","postDate":"2024-06-17T11:25:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2024-10-13T00:00:00+00:00","releaseDateString":"October 13th","image":[{"id":"10738","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-REDUCE-TIME.jpg","title":"USE CASE REDUCE TIME","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-REDUCE-TIME.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-REDUCE-TIME.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

Evaluating the maturity of your organization's cyber threat \nintelligence capability is the first step towards enhancing its \nresilience against digital threats. This how to walks you through our \nsystematic approach to assessing ones cyber threat intelligence \nmaturity, ensuring effective identification of improvements and \nstructuring that in a longer-term roadmap.

","features":[{"value":"System","__typename":"contentListTable_TableRow"},{"value":"Action Items","__typename":"contentListTable_TableRow"}],"moduleCount":3,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":["reseller-pro-license","knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"66725","title":"How to Boost Agile DevSecOps","slug":"how-to-boost-devsecops","uri":"app/premium/how-to-boost-devsecops","postDate":"2024-06-18T12:13:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2025-10-10T00:00:00+00:00","releaseDateString":"October 10th","image":[{"id":"10741","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","title":"USE CASE THREAT INFORMED DEFENSES","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

","features":null,"moduleCount":1,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":"$2c"},{"id":"66741","title":"How to Build Scalable Asset Management","slug":"how-to-build-scalable-asset-management","uri":"app/premium/how-to-build-scalable-asset-management","postDate":"2024-06-18T12:13:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2025-10-10T00:00:00+00:00","releaseDateString":"October 10th","image":[{"id":"10741","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","title":"USE CASE THREAT INFORMED DEFENSES","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

","features":null,"moduleCount":1,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":"$2d"},{"id":"66739","title":"How to Start Lean Cybersecurity","slug":"how-to-start-lean-cybersecurity","uri":"app/premium/how-to-start-lean-cybersecurity","postDate":"2024-06-18T12:13:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2025-10-04T00:00:00+00:00","releaseDateString":"October 4th","image":[{"id":"10741","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","title":"USE CASE THREAT INFORMED DEFENSES","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","width":1920,"__typename":"images_Asset"}],"summary":"$2e","features":null,"moduleCount":1,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":"$2f"},{"id":"66733","title":"How to Run Lean Management Reviews","slug":"how-to-run-lean-management-reviews","uri":"app/premium/how-to-run-lean-management-reviews","postDate":"2024-06-18T12:13:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2025-10-17T00:00:00+00:00","releaseDateString":"October 17th","image":[{"id":"10741","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","title":"USE CASE THREAT INFORMED DEFENSES","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","width":1920,"__typename":"images_Asset"}],"summary":"$30","features":null,"moduleCount":1,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":"$31"},{"id":"66745","title":"How to Setup Agile Security Operations","slug":"how-to-setup-agile-security-operations","uri":"app/premium/how-to-setup-agile-security-operations","postDate":"2024-06-18T12:13:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2025-10-17T00:00:00+00:00","releaseDateString":"October 17th","image":[{"id":"10741","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","title":"USE CASE THREAT INFORMED DEFENSES","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","width":1920,"__typename":"images_Asset"}],"summary":"$32","features":null,"moduleCount":1,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":"$33"},{"id":"66727","title":"How to Setup an ISMS as Prompt","slug":"how-to-setup-isms-prompt","uri":"app/premium/how-to-setup-isms-prompt","postDate":"2024-06-18T12:13:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2026-02-21T00:00:00+00:00","releaseDateString":"February 21st","image":[{"id":"10741","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","title":"USE CASE THREAT INFORMED DEFENSES","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

","features":null,"moduleCount":1,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":"$34"},{"id":"66723","title":"How to Build an Awesome Security Wiki","slug":"how-to-build-security-wiki","uri":"app/premium/how-to-build-security-wiki","postDate":"2024-06-18T12:13:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2025-12-05T00:00:00+00:00","releaseDateString":"December 5th","image":[{"id":"10741","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","title":"USE CASE THREAT INFORMED DEFENSES","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-THREAT-INFORMED-DEFENSES.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

Writing documentation is hard. However, writing awesome documentation is even harder. The challenge is that security teams need good documentation more than any other technical discipline.

The primary reason is that people come and go and it is impossible to replace knowledge without documentation. Secondly, you need to justify what you are doing to the business. When the next audit comes you need to describe what you do and prove you do it. Third, security teams are constantly firefighting and good documentation can make a great difference during incident response.

Regardless, your security team doesn’t just deserve working documentation, they deserve awesome documentation. Throughout their long working day, your colleagues will be staring at tools first and documentation second. Because of this, making documentation a pleasure to work with should be a top priority for your team.

","features":null,"moduleCount":1,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":["reseller-pro-license","knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"44902","title":"How to Craft a Cybersecurity Budget Your CFO Can Understand","slug":"how-to-cybersecurity-budget","uri":"app/premium/how-to-cybersecurity-budget","postDate":"2024-06-17T11:25:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2024-10-13T00:00:00+00:00","releaseDateString":"October 13th","image":[{"id":"10738","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-REDUCE-TIME.jpg","title":"USE CASE REDUCE TIME","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-REDUCE-TIME.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-REDUCE-TIME.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

In this system, we're exploring how effective cybersecurity budgeting isn't just about numbers, but about creating feelings of security, clarity, and control for financial stakeholders. We're shares practical strategies to align cybersecurity budgets with business outcomes, urging practitioners to focus on addressing root causes rather than surface-level symptoms. We provides a mental model to guide CFOs and financial decision-makers in supporting a transparent and strategic cybersecurity budget.

","features":null,"moduleCount":3,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":["reseller-pro-license","knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"53089","title":"How to Use Behavioral Psychology for Smarter Decision-Making","slug":"how-to-behavioral-science-decisionmaking","uri":"app/premium/how-to-behavioral-science-decisionmaking","postDate":"2024-06-17T11:25:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2024-10-13T00:00:00+00:00","releaseDateString":"October 13th","image":[{"id":"10738","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-REDUCE-TIME.jpg","title":"USE CASE REDUCE TIME","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-REDUCE-TIME.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-REDUCE-TIME.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

In this system, we're exploring how behavioral science can transform cybersecurity decision-making by addressing not just data, but the cognitive biases, emotions, and mental models that shape our responses to digital threats. We share practical strategies to recognize and overcome biases, use emotional intelligence for creative problem-solving, and apply systems thinking to make decisions that align with broader business goals. We provide tools and mental models to help cybersecurity leaders make smarter, more impactful decisions under pressure.

","features":null,"moduleCount":3,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":["reseller-pro-license","knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"53899","title":"How to Build Your Own Threat Management Process","slug":"how-to-build-your-own-threat-management-process","uri":"app/premium/how-to-build-your-own-threat-management-process","postDate":"2024-06-17T11:25:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2024-10-13T00:00:00+00:00","releaseDateString":"October 13th","image":[{"id":"10738","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-REDUCE-TIME.jpg","title":"USE CASE REDUCE TIME","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-REDUCE-TIME.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-REDUCE-TIME.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

Threat management is a critical aspect that directs attention towards events or scenarios that have not yet been evaluated as risks or manifested as incidents. Here's our proven system to help you develop a robust threat management process. It outlines practical steps on how to develop a proactive approach that integrates preventive measures, continuous monitoring, and response protocols into a seamless process flow, allowing you to tailor it to your organization's specific needs.

","features":null,"moduleCount":3,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":["reseller-pro-license","knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"53453","title":"How to Create Your Threat Led Testing System","slug":"how-to-create-your-threat-led-testing-system","uri":"app/premium/how-to-create-your-threat-led-testing-system","postDate":"2024-06-17T11:25:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2024-10-13T00:00:00+00:00","releaseDateString":"October 13th","image":[{"id":"10738","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-REDUCE-TIME.jpg","title":"USE CASE REDUCE TIME","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-REDUCE-TIME.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-REDUCE-TIME.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

Threat led testing, also including adversary simulations or red \nteaming, allows organizations to identify and mitigate vulnerabilities \nby simulating real-world attack scenarios. This how to explores how we \nfrom the CTI perspective establish a system for threat-led testing, \nensuring your security measures are both resilient and adaptive.

","features":null,"moduleCount":2,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":["reseller-pro-license","knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"54302","title":"How to Effectively Use Analytical Assessments in Threat Intelligence Deliverables","slug":"how-to-use-assessments","uri":"app/premium/how-to-use-assessments","postDate":"2024-06-17T11:25:00+00:00","section":"systemsPremium","typeHandle":"system","showCountdown":true,"releaseDate":"2024-10-13T00:00:00+00:00","releaseDateString":"October 13th","image":[{"id":"10738","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-REDUCE-TIME.jpg","title":"USE CASE REDUCE TIME","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-REDUCE-TIME.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-REDUCE-TIME.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

Effectively leverage analytical assessments are crucial to help \nsubstantiate uncertainty in threat intelligence. Proactive security \nmeasures requires you to have an approach for this and using assessments\n daily creates a paper trail demonstrating value and supports \ndecision-making. Implement assessments by integrating them into your \nregular threat intelligence processes and using them to document and \ncommunicate findings consistently.

","features":null,"moduleCount":1,"scenarioCount":0,"__typename":"systemsPremium_system_Entry","promotions":["reseller-pro-license","knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]}]}],"style":"$undefined","className":"rt-Box CourseScroller_sliderWrapper__MA3Vt"}]],"style":"$undefined","className":"rt-Flex rt-r-fd-column rt-r-ai-stretch rt-r-gap-6"}],"style":"$undefined","className":"rt-Section rt-r-size-1"}],["$","section",null,{"children":["$","div",null,{"children":[["$","h2",null,{"children":"Available Scenarios","data-accent-color":"$undefined","style":"$undefined","className":"rt-Heading rt-r-size-4 md:rt-r-size-6 Heading_heading__Z2SWQ"}],["$","div",null,{"children":["$","$L26",null,{"items":[{"id":"74214","title":"Credential Harvesting Attacks Using Phishing, Authentication Pages, Password manager or Extensions","slug":"credential-harvesting-attacks","uri":"app/scenarios/credential-harvesting-attacks","postDate":"2026-02-05T21:00:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":false,"releaseDate":null,"releaseDateString":null,"image":[{"id":"10646","height":2214,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SIMPLIFY.png","title":"USE CASE SIMPLIFY","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SIMPLIFY.png","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SIMPLIFY.png","width":3648,"__typename":"images_Asset"}],"summary":"

The objective of credential harvesting is to obtain login credentials (namely, email address and password pairs) to exploit for further malicious activity including exploiting them to compromise an organisation to steal sensitive data, selling the credentials to other threat actors, or using the access to deploy malware. The objective of this scenario is to illustrate the stages of a credential harvesting attack and threat actor tactics, techniques, and procedures (TTPs), based on analysis of data and industry reporting in 2022-25.

","__typename":"scenarios_scenario_Entry","promotions":["knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"74210","title":"Organisation Infiltration by Attackers Posing as IT Employees for Remote Jobs","slug":"organisation-infiltration-by-attackers-posing-as-it-employees-for-remote-jobs","uri":"app/scenarios/organisation-infiltration-by-attackers-posing-as-it-employees-for-remote-jobs","postDate":"2026-02-05T20:44:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":false,"releaseDate":null,"releaseDateString":null,"image":[{"id":"10646","height":2214,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SIMPLIFY.png","title":"USE CASE SIMPLIFY","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SIMPLIFY.png","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SIMPLIFY.png","width":3648,"__typename":"images_Asset"}],"summary":"

A number of both state-sponsored and cybercriminal groups have begun using the tactic of impersonating IT employees being hired remotely in order to socially engineer target organisations and quickly gain a foothold through malware and remote access systems. Once inside, the attackers can abuse IT applications and processes to quickly perform network reconnaissance, deploy malware, traverse the network, and exfiltrate data, prepare for a ransomware attack, or sabotage systems or data.

","__typename":"scenarios_scenario_Entry","promotions":["knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"74208","title":"DNS Threats: Cache Poisoning, Tunneling, Fast Flux and Domain Shadowing","slug":"dns-threats","uri":"app/scenarios/dns-threats","postDate":"2026-02-05T20:40:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":false,"releaseDate":null,"releaseDateString":null,"image":[{"id":"10740","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SIMPLIFY.jpg","title":"USE CASE SIMPLIFY","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SIMPLIFY.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SIMPLIFY.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

The objectives of DNS attacks vary widely, but are united in the abuse of the Domain Name System for the purposes of aiding cyberattacks, stealing and exfiltrating data, or routing stolen traffic from compromised systems into the hands of attackers. Verification of information sent over DNS is much more difficult, as it uses User Datagram Protocol (UDP), lacking the security features of Transmission Control Protocol (TCP).

","__typename":"scenarios_scenario_Entry","promotions":["knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"74205","title":"Adware Attacks Targeting Advertisement","slug":"adware-attacks-targeting-advertisement","uri":"app/scenarios/adware-attacks-targeting-advertisement","postDate":"2026-02-05T20:32:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":false,"releaseDate":null,"releaseDateString":null,"image":[{"id":"10646","height":2214,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SIMPLIFY.png","title":"USE CASE SIMPLIFY","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SIMPLIFY.png","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SIMPLIFY.png","width":3648,"__typename":"images_Asset"}],"summary":"

The objective of an adware attack is to force the installation of a piece of adware on a victim device which will display unwanted advertisements. This type of attack will change how advertisements are displayed on the device, potentially only displaying advertisements under attacker control, lead to browser pop-ups which crowd out legitimate processes and force the victim to download additional unwanted programs, or even including additional malware, which will steal information from the targeted device.

","__typename":"scenarios_scenario_Entry","promotions":["knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"67712","title":"Threats to Mainframe Computers","slug":"threats-to-mainframe-computers","uri":"app/scenarios/threats-to-mainframe-computers","postDate":"2025-11-07T15:15:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":false,"releaseDate":null,"releaseDateString":null,"image":[{"id":"10740","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SIMPLIFY.jpg","title":"USE CASE SIMPLIFY","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SIMPLIFY.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SIMPLIFY.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

Mainframe computer systems remain in use across a variety of industries where large amounts of transactions must be quickly processed at scale, including financial services, retail, transportation, government, insurance, and healthcare, and the market for such systems continues to increase every year. Mainframe systems continue to process enormous amounts of data, with IBM estimating that 70% of transactions by monetary value are processed by mainframes.

","__typename":"scenarios_scenario_Entry","promotions":["knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"67706","title":"Espionage Against Active Directory Networks","slug":"espionage-against-active-directory-networks","uri":"app/scenarios/espionage-against-active-directory-networks","postDate":"2025-11-07T14:40:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":false,"releaseDate":null,"releaseDateString":null,"image":[{"id":"10740","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SIMPLIFY.jpg","title":"USE CASE SIMPLIFY","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SIMPLIFY.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SIMPLIFY.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

Cyber espionage refers to the practice of leveraging internet and digital technologies to secretly acquire intelligence or sensitive information to gain a political or economic advantage.

This scenario distinguishes between public sector espionage (state-sponsored activities targeting government entities, critical infrastructure, and national security interests) and private sector espionage (targeting corporate intellectual property, trade secrets, and competitive intelligence).

\n\n

","__typename":"scenarios_scenario_Entry","promotions":["knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"45859","title":"Pig Butchering and Insider Threat","slug":"pig-butchering-and-insider-threat","uri":"app/scenarios/pig-butchering-and-insider-threat","postDate":"2024-06-18T13:27:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":true,"releaseDate":"2024-06-21T00:00:00+00:00","releaseDateString":"June 21st","image":[{"id":"10740","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SIMPLIFY.jpg","title":"USE CASE SIMPLIFY","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SIMPLIFY.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SIMPLIFY.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

This scenario focuses on pig butchering, a scheme perpetrated by financially motivated actors. It illustrates how a pig butchering attack can escalate into insider risk through the extortion of the victim, assuming the attacker is a well-resourced criminal organization capable of sophisticated tactics.

","__typename":"scenarios_scenario_Entry","promotions":["knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"34163","title":"IoT Enabled Attacks: From Initial Access to Industrial Control System Compromise","slug":"iot-enabled-attacks","uri":"app/scenarios/iot-enabled-attacks","postDate":"2024-04-26T07:27:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":true,"releaseDate":"2024-04-30T00:00:00+00:00","releaseDateString":"April 30th","image":[{"id":"10740","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SIMPLIFY.jpg","title":"USE CASE SIMPLIFY","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SIMPLIFY.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SIMPLIFY.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

This scenario demonstrates how real-world cyberattacks are being performed against Industrial IoT systems, leading to compromise, disruption, and data theft. These attack chains were chosen to demonstrate how compromise of IIoT infrastructure can fully facilitate different types of attacks, or serve as an initial access vector for deeper penetration into industrial networks.

","__typename":"scenarios_scenario_Entry","promotions":["knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"28239","title":"Emerging Security Threats related to GitHub","slug":"emerging-security-threats-related-to-github","uri":"app/scenarios/emerging-security-threats-related-to-github","postDate":"2024-02-19T13:20:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":true,"releaseDate":"2024-02-23T00:00:00+00:00","releaseDateString":"February 23rd","image":[{"id":"10740","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SIMPLIFY.jpg","title":"USE CASE SIMPLIFY","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SIMPLIFY.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SIMPLIFY.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

As the popularity of Github and other code repositories remains among software developers, it has become a cornerstone of collaborative coding and software deployment. However, this widespread usage also poses significant security challenges, as malicious actors exploit its functionalities for nefarious purposes. In this threat scenario we outline critical aspects emerging over the last year, leading to compromises or playing into wider software supply chain incidents.

","__typename":"scenarios_scenario_Entry","promotions":["knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"27050","title":"Kubernetes Attacks via Vulnerability Exploitation, AWS Infiltration, and Container Break Out","slug":"kubernetes-attacks-via-vulnerability-exploitation-aws-infiltration-and-container-break-out","uri":"app/scenarios/kubernetes-attacks-via-vulnerability-exploitation-aws-infiltration-and-container-break-out","postDate":"2024-01-10T15:25:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":true,"releaseDate":"2024-01-12T00:00:00+00:00","releaseDateString":"January 12th","image":[{"id":"10740","height":1165,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SIMPLIFY.jpg","title":"USE CASE SIMPLIFY","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SIMPLIFY.jpg","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SIMPLIFY.jpg","width":1920,"__typename":"images_Asset"}],"summary":"

Kubernetes attacks aim to exploit the platform's cloud computing power for malicious purposes or as an entry point to gain deeper network access. The proliferation of Kubernetes infrastructure in organizations has expanded the attack surface for intruders, making unsecured cloud instances a prime entry point into Kubernetes clusters, especially as cyberattacks on cloud infrastructure increased significantly. This scenario details several dominant attack chains to attack Kubernetes or exploit Kubernetes to pursue additional objectives.

","__typename":"scenarios_scenario_Entry","promotions":"$35"},{"id":"26269","title":"Disinformation and Spearphishing Attacks using Artificial Intelligence and Large Language Models","slug":"disinformation-and-spearphishing-attacks-using-artificial-intelligence-and-large-language-models","uri":"app/scenarios/disinformation-and-spearphishing-attacks-using-artificial-intelligence-and-large-language-models","postDate":"2024-01-02T15:29:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":false,"releaseDate":null,"releaseDateString":null,"image":[{"id":"10646","height":2214,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SIMPLIFY.png","title":"USE CASE SIMPLIFY","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SIMPLIFY.png","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SIMPLIFY.png","width":3648,"__typename":"images_Asset"}],"summary":"

The integration of AI and machine learning in disinformation and phishing campaigns represents a noteworthy evolution in cyber threats, as demonstrated by the increasing prevalence of AI-generated email attacks. With accessible AI tools enabling the creation of realistic deepfakes and sophisticated phishing campaigns, the cyber threat landscape is evolving rapidly, necessitating advanced cybersecurity solutions to effectively counteract these multifaceted threats, which encompass geopolitical influence, intelligence gathering, and economic gains. This scenario explores more developing usecases that focus on using the technology to create disinformation and spearphishing emails.

","__typename":"scenarios_scenario_Entry","promotions":["knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"26267","title":"Exfiltration: Emerging Methods of Data Theft","slug":"exfiltration-emerging-methods-of-data-theft","uri":"app/scenarios/exfiltration-emerging-methods-of-data-theft","postDate":"2024-01-02T15:21:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":false,"releaseDate":null,"releaseDateString":null,"image":[{"id":"10646","height":2214,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SIMPLIFY.png","title":"USE CASE SIMPLIFY","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SIMPLIFY.png","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SIMPLIFY.png","width":3648,"__typename":"images_Asset"}],"summary":"

Data exfiltration, as part of various other attack chains such as ransomware payments, espionage, and fraud, poses a significant threat to organizations. As the digital attack surface expands and remote work increases, attackers leverage various methods, targeting protective measures like Multi-Factor Authentication and data backup systems, resulting in a rising trend of incidents with substantial financial and operational consequences. This scenario explores emerging methods of Data Theft observed in 2023 and forecasted towards 2024.

","__typename":"scenarios_scenario_Entry","promotions":["knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"25865","title":"BGP Hijacking: Methods for Rerouting and Spoofing Traffic Between Service Providers","slug":"bgp-hijacking-methods-for-rerouting-and-spoofing-traffic-between-service-providers","uri":"app/scenarios/bgp-hijacking-methods-for-rerouting-and-spoofing-traffic-between-service-providers","postDate":"2023-12-29T09:41:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":false,"releaseDate":null,"releaseDateString":null,"image":[{"id":"10646","height":2214,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SIMPLIFY.png","title":"USE CASE SIMPLIFY","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SIMPLIFY.png","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SIMPLIFY.png","width":3648,"__typename":"images_Asset"}],"summary":"

The objective of Border Gateway Protocol hijacking is to take advantage of weaknesses in the internet’s routing system to disrupt, deny access to, improperly route, or capture internet traffic. This scenario illustrates three attack chains, demonstrating how this attack is currently used by both cybercriminals and nation-states for financial and political reasons.

","__typename":"scenarios_scenario_Entry","promotions":["knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"25863","title":"Domain Hijacking Attack","slug":"domain-hijacking-attack","uri":"app/scenarios/domain-hijacking-attack","postDate":"2023-12-29T09:30:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":false,"releaseDate":null,"releaseDateString":null,"image":[{"id":"10646","height":2214,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SIMPLIFY.png","title":"USE CASE SIMPLIFY","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SIMPLIFY.png","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SIMPLIFY.png","width":3648,"__typename":"images_Asset"}],"summary":"

Domain Hijacking attacks aim to gain control of an organization's online identity by compromising domain registrars. This malicious activity involves various objectives, including financial gain, reputational damage, phishing, and data theft. Domains, valuable digital assets, are targeted for ransom or phishing scams, leading to potential reputational and financial losses. Domain squatting, a separate attack, involves registering domains to block others or capitalize on user typos for profit, causing further harm to organizations and individuals.

","__typename":"scenarios_scenario_Entry","promotions":["knauf-12-months","company-premium-code","sherpany-12-months","anwb-12-months"]},{"id":"25861","title":"Attacks Targeting Low Earth Orbit and Geostationary Orbit Satellite Systems","slug":"attacks-targeting-low-earth-orbit-and-geostationary-orbit-satellite-systems","uri":"app/scenarios/attacks-targeting-low-earth-orbit-and-geostationary-orbit-satellite-systems","postDate":"2023-12-29T09:13:00+00:00","section":"scenarios","typeHandle":"scenario","showCountdown":false,"releaseDate":null,"releaseDateString":null,"image":[{"id":"10646","height":2214,"hasFocalPoint":false,"focalPoint":[0.5,0.5],"path":"Usecases/USE-CASE-SIMPLIFY.png","title":"USE CASE SIMPLIFY","alt":null,"src":"https://api.venation.digital/uploads/images/Usecases/USE-CASE-SIMPLIFY.png","url":"https://api.venation.digital/uploads/images/Usecases/_1xAUTO_crop_center-center_none/USE-CASE-SIMPLIFY.png","width":3648,"__typename":"images_Asset"}],"summary":"

High-throughput satellites have transformed the commercial satellite industry, extending internet coverage beyond traditional cable lines since the 2000s. Recent cyberattacks on Viasat and Starlink satellites in 2022 highlight the vulnerability of satellite systems, impacting sectors like military, internet services, and finance. This scenario illustrates two most notable attack methods, emphasizing the likelihood of state-actors seeking geopolitical advantage by compromising satellite-dependent communication.

Scenario Intelligence Platform

Trending Scenarios

NEW Export to Excel

Exploiting Unpatched or Zero-day Vulnerability in VPN or Firewall Solution

Most prevalent Business Email Compromise scams

Software supply chain manipulation gaining unauthorised access to client environments

Threats to Machine Learning’s Underlying Models

Phishing attacks using Adversary-in-the-middle, Mark of the web bypass, and Telephone-Oriented Attack Delivery methods

Trending Systems

NEW Export to Excel

How to Create Your Stakeholder Matrix

How to be a Cyber Threat Intelligence Consumer

How to Create Your Cyber Threat Intelligence Process

How to Create a Threat Landscape Deliverable

How to Implement Scenario-based Threat Management

How to Model Threat Scenarios in Attack Flow

How to Create Scenario-Based Incident Response Playbooks

Upcoming & Recent Updates

How to Start Cyber Scenario Planning

How to Start Lean Cybersecurity

How to Setup Agile Security Operations

How to Setup an ISMS as Prompt

How to Setup Lean Vulnerability Management

How to Build Scalable Asset Management

How to Boost Agile DevSecOps

How to Run Lean Management Reviews

Available Premium Systems

How to Create a Business Case for CTI

How to Create Your Adversary Profiling System

How to Assess the Maturity of Your Cyber Threat Intelligence Capability

How to Boost Agile DevSecOps

How to Setup Lean Vulnerability Management

How to Build Scalable Asset Management

How to Start Lean Cybersecurity

How to Run Lean Management Reviews

How to Setup Agile Security Operations

How to Setup an ISMS as Prompt

How to Build an Awesome Security Wiki

How to Craft a Cybersecurity Budget Your CFO Can Understand

How to Use Behavioral Psychology for Smarter Decision-Making

How to Build Your Own Threat Management Process

How to Create Your Threat Led Testing System

How to Effectively Use Analytical Assessments in Threat Intelligence Deliverables

Available Scenarios

Credential Harvesting Attacks Using Phishing, Authentication Pages, Password manager or Extensions

Organisation Infiltration by Attackers Posing as IT Employees for Remote Jobs

DNS Threats: Cache Poisoning, Tunneling, Fast Flux and Domain Shadowing

Adware Attacks Targeting Advertisement

Threats to Mainframe Computers

Espionage Against Active Directory Networks

Pig Butchering and Insider Threat

IoT Enabled Attacks: From Initial Access to Industrial Control System Compromise

Emerging Security Threats related to GitHub

Kubernetes Attacks via Vulnerability Exploitation, AWS Infiltration, and Container Break Out

Threats to Machine Learning’s Underlying Models

Disinformation and Spearphishing Attacks using Artificial Intelligence and Large Language Models

Exfiltration: Emerging Methods of Data Theft

BGP Hijacking: Methods for Rerouting and Spoofing Traffic Between Service Providers

Domain Hijacking Attack

Attacks Targeting Low Earth Orbit and Geostationary Orbit Satellite Systems