From the Fall 2014 Issue

Hunting with Cyber Threat Intelligence

Robert S. Johnston

Do the current techniques to conduct incident management and response constitute an effective counter threat operation?  In today’s threat landscape, chasing down alerts from your SEIM may not be enough to catch the most advanced threats.  Today’s Advanced Persistent Threats (APT) link sociological, psychological, and technical tradecraft together to infiltrate the  most secure networks, and are successful even against cutting edge countermeasures.  APTs are unique not only because of their engineering capability, knowledge base, and organizational strength, but their ability to harness and direct intelligence to drive operations.  This paper proposes a new approach to countering APT threats . . .

Leave a Comment