{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata. Fed continuously.","feed_url":"https://feed.craftedsignal.io/tags/attack.t1562.006/feed.json","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cpes":[],"_cs_cves":[],"_cs_exploited":false,"_cs_has_poc":false,"_cs_poc_references":[],"_cs_products":["AWS CloudTrail"],"_cs_severities":["medium"],"_cs_tags":["attack.impact","attack.defense_evasion","attack.t1562.001","attack.t1562.006"],"_cs_type":"advisory","_cs_vendors":["Amazon"],"content_html":"","date_modified":"2026-07-14T20:24:11Z","date_published":"2026-07-14T20:24:11Z","id":"https://feed.craftedsignal.io/briefs/aws_cloudtrail_misconfiguration_detection/","summary":"This rule detects changes to AWS CloudTrail configurations that could indicate a security risk, specifically disabling or altering trails, or failing a security configuration check. Such actions can significantly reduce visibility into AWS activity.","title":"","url":"https://feed.craftedsignal.io/briefs/aws_cloudtrail_misconfiguration_detection/"}],"language":"en","title":"CraftedSignal Threat Feed - Attack.t1562.006","version":"https://jsonfeed.org/version/1.1"}