In a previous post I discussed a more broad and general standard on sharing information about Cyber Threat Intelligence (CTI). Collaboration is what keeps the world moving forward, allowing great minds to work together to continue pushing research and development further. There is work to be done to be a participant; however, what if you want to contribute but simply cannot at … [Read more...]
Be a Part of the Cyber Threat Intelligence Community
Has your company recently been the target of malicious activity? Do you want to provide information related to the attack to help identify potential future attacks and help raise awareness for others and the community as a whole? That’s where Cyber Observable eXpression (CybOX), Structured Threat Information eXpression (STIX) and Trusted Automated eXchange of Indicator … [Read more...]
The Black Swan in Security Statistics ~ Zero Day Malware
Using a risk model based on security statistics is a valid and useful approach to defending against cyber attacks. A company can decide that if one type of attack is affecting a large percentage of companies, then chances are, they may be next. The company can take steps to defend against that attack. However, sometimes past statistics are not enough and can be … [Read more...]
2015 InfoSec Trends You Should and Shouldn’t Worry About
We're rushing headlong into the end of the year, which means it's that time again—time to pull out my crystal ball for WatchGuard's annual security predictions. We actually already released next year's security predictions last week. You can read our press release about them (which includes a shortened version of the predictions) or check out this cool and … [Read more...]