Recently, Forrester analyst Rick Holland brought up the point of quality vs.
quantity when it comes to threat indicators. We agree, the focus should never
be on the quantity of data, it should be on the quality of data. So the
question becomes, where and how can you gather or make sense of this quality
As an industry, we need to work together to understand threat data better.
Everyone needs quality data to make decisions. Just like marketing
departments need quality data to determine who to market (and sell) to; the
SOC, IR, threat, and network defense teams need quality data to make
decisions to better protect their infrastructure. People don’t need more
data, they need more quality data. This data can come from a variety of
places: internal, partners, industry groups and affiliations, open source,
and premium paid. In all these cases, the go... (more)
Twitter on Ulitzer
Last night Twitter.com was hacked by a group purportedly titled the Iranian
Cyber Army, at least that is what people think based on the fact that this
group advertised they were responsible by displaying a redirected web page
with an Iranian flag and text that takes credit, saying "This website has
been hacked by the Iranian Cyber Army". This morning another website
(mawjcamp.org), which appears to be a Iranian Reformist website based outside
of Iran was also found to have been hacked.
This event comes at a time when the United States Government is saying that ... (more)
Last week, Anton Chuvakin from Gartner wrote a blog about what he is
calling an Intelligence Management Platform. He includes some thoughts by
Facebook on how they are building their own platform. He alludes to
non-public sources and I’m sure ThreatConnect™ is one, so rather than
keep you all in suspense, I thought this would be an opportune time for
ThreatConnect to say what we think a Threat Intelligence Platform is.
Rick Holland from Forrester said recently at a SANS conference that the
threat intelligence platform is like the quarterback of your operations. The
threat intel... (more)
I was part of a panel titled “Developing Security Strategies to
Successfully Combat Sophisticated Threats to your Network, while Protecting
Customer Privacy” at the TM Forum conference two weeks ago. Given the
topic, and the interesting conversation, I wanted to highlight some of the
ideas expressed around sophisticated threats.
Verizon’s Marc Spitler, and AT&T’s Brian Rexroad. Daniel O’Donnel from
Network Critical and Ajay Uggirala from NetScout, and Martin Huddleston from
United Kingdom (UK) Ministry of Defense (MoD) accompanied me on the panel.
In essence, cyber-attack is big... (more)
August 6, 2014
By: Joseph Marks
With help from David Perera, Tal Kopan and Shaun Waterman
MORE THAN 1 BILLION PASSWORDS STOLEN BY RUSSIAN HACKER GANG — Last
night’s New York Times scoop that a gang of criminal hackers deep in the
Russian hinterlands had amassed more than 1 billion usernames and passwords
linked to half-a-billion email addresses demonstrates both that the Web is
increasingly dangerous for consumers and that Russia remains a safe zone for
hacking networks, analysts told MC. “The untouchables of the internet have
developed a robust hacker economy of scale in Russia... (more)