MITRE Launches New Framework to Tackle Crypto Risks

In an effort to bolster the cybersecurity of digital financial systems, including those associated with cryptocurrency, MITRE has launched a new framework aimed at addressing vulnerabilities in these systems. The Adversarial Actions in Digital Asset Payment Technologies (AADAPT) framework provides developers, policymakers, and financial organizations with a structured methodology for identifying, analyzing, and mitigating potential risks associated with digital asset payments.

The AADAPT framework was announced on July 14 by MITRE and leverages insights from real-world attacks cited by over 150 sources, including government, industry, and academia. The framework identifies adversarial tactics, techniques, and procedures linked to digital asset payment technologies, including consensus algorithms and smart contracts.

Cyber threats associated with cryptocurrency are a growing concern, ranging from double-spending attacks and phishing schemes to ransomware incidents that impact businesses, governments, and individual users. Smaller organizations, local governments, and municipalities are particularly vulnerable due to their limited resources for enhancing cybersecurity measures.

According to Wen Masters, Vice President of Cyber Technologies at MITRE, "Digital payment assets like cryptocurrency are set to transform the future of global finance, but their security challenges cannot be ignored." With AADAPT, MITRE is empowering stakeholders to adopt robust security measures that not only safeguard their assets but also build trust across the ecosystem.

The AADAPT framework is modeled after the MITRE ATT&CK framework and its tactics and techniques are complementary to those in ATT&CK. This synergy aims to provide a comprehensive approach to addressing cybersecurity risks associated with digital asset payments.

Unfortunately, the cryptocurrency market has seen significant vulnerabilities in recent years. In July 2025, cybersecurity firm CertiK reported that around $2.47 billion in cryptocurrency had been stolen via scams, hacks, and exploits in the first half of 2025. The surge was sparked by a hack targeting cryptocurrency exchange Bybit in February, which resulted in $1.4 billion in cryptocurrency being stolen. Notably, this incident was linked to Lazarus, a state-sponsored North Korean APT group.

The launch of the AADAPT framework is an important step towards addressing these vulnerabilities and ensuring the security of digital financial systems associated with cryptocurrency. By providing practical guidance and tools tailored to the unique needs of this market segment, MITRE aims to empower stakeholders to adopt robust security measures that safeguard their assets and build trust across the ecosystem.