As adversaries changed their view of an attack to include vectors across an organization, defenders have had to evolve their approach as well. This is best captured by Mark Harris from Gartner who observed that adversaries have shifted their focus of attacks from infecting files to infecting systems and now to infecting the entire enterprise. Previously, I talked about how this has impacted our approach to threat detection. It is no longer just about finding the one control point or system where the attack is being triggered. Multiple points across the enterprise are involved so you need to be able to connect the dots for a comprehensive understanding of the threat you are facing and know what you must defend. This is why Extended Detection and Response (XDR) is generating great interest right now.
- Security Pros: Before You Do Anything, Understand Your Threat Landscape 05/31/2023
- How Thales Group Uses the ThreatQ Platform to Build its Leading Threat Intelligence Service 05/30/2023
- Thales Builds Europe’s Largest Cyber Threat Intelligence Service with ThreatQuotient 05/23/2023
- Close the Cybersecurity Skills Gap by Investing in the Future 05/16/2023
- Security Teams and Limited Resources 05/09/2023
ThreatQuotient™ understands that the foundation of intelligence-driven security is people. The company’s open and extensible threat intelligence platform, ThreatQ™, empowers security teams with the context, customization and prioritization needed to make better decisions, accelerate detection and response and advance team collaboration.