Published annually by Picus Labs, the Red Report distills massive malware datasets into a practical top-10 list of adversary techniques. Security teams use it to prioritize detection and validation efforts against the most common real-world behaviors.
FAQs
Picus Red Report: frequently asked questions
What is Picus Red Report?
The Picus Red Report analyzes over a million malware samples annually, mapping millions of observed behaviors to MITRE ATT&CK to rank the techniques attackers use most, such as process injection and defense evasion. A focused, actionable prioritization reference for defenders.
Where is Picus Red Report based?
Picus Red Report is based in San Francisco, CA, USA.
What is Picus Red Report listed under on Cyber Resources?
Picus Red Report is listed in the Research & Reports category of Cyber Resources, the curated directory of the cybersecurity marketing and growth ecosystem.
More Research & Reports
Verizon Data Breach Investigations Report (DBIR)
New York, USA
The Verizon DBIR analyzes thousands of confirmed breaches and security incidents contributed by law enforcement, forensic firms, and cyber insurers to map how breaches happen and who is behind them. Published annually, it is the most widely cited breach benchmark in the industry.
IBM Cost of a Data Breach Report
Armonk, USA
IBM's Cost of a Data Breach Report surveys hundreds of breached organizations across more than a dozen countries to quantify average breach cost, time to identify and contain, and cost factors such as AI governance and shadow AI. Research is conducted independently by the Ponemon Institute.
Mandiant M-Trends
Reston, USA
Mandiant's M-Trends draws on hundreds of thousands of hours of incident-response engagements to report on dwell time, initial infection vectors, and threat-actor tactics. A 17+ year staple for defenders, now published under Google Cloud.