For Lateral Movement, the most observed technique by DirectDefense is Valid Accounts, using stolen credentials to escalate privileges. Alerts triggered for Lateral Movement include: Lateral Movement – Local Credentials.
April 15, 2025
Get the latest cybersecurity stats delivered to your inbox every week
Browse more stats from DirectDefense or explore MITRE ATT&CK
Join 1,000+ security professionals getting weekly insights