MITRE Corporation released a new framework to help organisations fight fraudsters, introducing MITRE Fight Fraud Framework (F3), a curated knowledge base that provides a behaviour-based model of the tactics, techniques, and procedures fraudsters use. The framework is designed to describe cyber fraud incidents in a common structure and taxonomy to enable stronger collaboration on detection, prevention, and response, and it is globally accessible, open, and free for use.
MITRE F3 details two fraud-specific tactics—positioning, which covers post-compromise actions aimed at collecting and manipulating data and preparing follow-up execution, and monetization, which involves turning compromised assets into value. The framework also revises several existing ATT&CK definitions and offers a visual representation, a methodology overview, and further resources on a dedicated website and a GitHub repository.
According to MITRE, the aim is to create a shared language that helps defenders connect cyber activity to financial outcomes and align detection, prevention, and response strategies.