<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>Attack.t1562.006 - CraftedSignal Threat Feed</title><link>https://feed.craftedsignal.io/tags/attack.t1562.006/</link><description>Trending threats, MITRE ATT&amp;CK coverage, and detection metadata. Fed continuously.</description><generator>Hugo</generator><language>en</language><managingEditor>hello@craftedsignal.io</managingEditor><webMaster>hello@craftedsignal.io</webMaster><lastBuildDate>Tue, 14 Jul 2026 20:24:11 +0000</lastBuildDate><atom:link href="https://feed.craftedsignal.io/tags/attack.t1562.006/feed.xml" rel="self" type="application/rss+xml"/><item><title/><link>https://feed.craftedsignal.io/briefs/aws_cloudtrail_misconfiguration_detection/</link><pubDate>Tue, 14 Jul 2026 20:24:11 +0000</pubDate><author>hello@craftedsignal.io</author><guid isPermaLink="true">https://feed.craftedsignal.io/briefs/aws_cloudtrail_misconfiguration_detection/</guid><description>This rule detects changes to AWS CloudTrail configurations that could indicate a security risk, specifically disabling or altering trails, or failing a security configuration check. Such actions can significantly reduce visibility into AWS activity.</description><category domain="severity">medium</category><category domain="type">advisory</category><category>attack.impact</category><category>attack.defense_evasion</category><category>attack.t1562.001</category><category>attack.t1562.006</category></item></channel></rss>