{"id":3600,"date":"2016-05-26T04:10:31","date_gmt":"2016-05-26T04:10:31","guid":{"rendered":"https:\/\/www.happiestminds.com\/blogs\/?p=3600"},"modified":"2024-04-10T07:13:11","modified_gmt":"2024-04-10T07:13:11","slug":"threat-intelligence-the-answer-to-threats-or-another-fad","status":"publish","type":"post","link":"https:\/\/www.happiestminds.com\/blogs\/threat-intelligence-the-answer-to-threats-or-another-fad\/","title":{"rendered":"Threat Intelligence &#8211; The Answer to Threats or Another Fad?"},"content":{"rendered":"<div id=\"bsf_rt_marker\"><\/div><p style=\"line-height: 1.5714em; margin: 0px 0px 16px; color: #333333; font-family: Bitter,'Times New Roman',serif; font-size: 14px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; text-align: justify; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; background-color: #ffffff;\">The threat landscape has been dynamic and ever changing, and the growth and rapid advancement in cyber-attacks against enterprises and individuals have rendered traditional<a title=\" cyber-security\" href=\"https:\/\/www.happiestminds.com\/services\/cyber-and-infrastructure-security\/\" target=\"_blank\" rel=\"noopener\"> cyber-security<\/a> measures virtually obsolete.<\/p>\n<p style=\"line-height: 1.5714em; margin: 0px 0px 16px; color: #333333; font-family: Bitter,'Times New Roman',serif; font-size: 14px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; text-align: justify; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; background-color: #ffffff;\">To combat the new age of threats, more security enterprises are turning to threat intelligence, a vector or a knowledge item that is based on evidence, context, mechanism, indicator, implication or actionable advice on a threat to assets that is about to emerge. This vector or knowledge will help enterprises to respond and remediate threats before <a title=\"vulnerabilities\" href=\"https:\/\/www.happiestminds.com\/Insights\/security-testing\/\" target=\"_blank\" rel=\"noopener\">vulnerabilities<\/a> are exploited and before the occurrence of a security incident.<\/p>\n<p style=\"line-height: 1.5714em; margin: 0px 0px 16px; color: #333333; font-family: Bitter,'Times New Roman',serif; font-size: 14px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; text-align: justify; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; background-color: #ffffff;\">What exactly are the companies in the \u201c<a title=\"threat intelligence\" href=\"https:\/\/www.happiestminds.com\/services\/cyber-intelligence-platform\/\" target=\"_blank\" rel=\"noopener\">threat intelligence<\/a>\u201d business doing? Just to take the example of a couple of threat intelligence companies the generic service description will read like this&#8230;\u201cOur automated tools and proprietary AI algorithms minutely examine the web for \u201cthreat indicators\u201d (read suspicious activity). They find some xx million such cases every day. We then filter this data, tag it, and give it to human analysts to find out those couple of hundred nuggets of information that might be useful to our client for preventing cyber-attacks\u201d.<\/p>\n<p style=\"line-height: 1.5714em; margin: 0px 0px 16px; color: #333333; font-family: Bitter,'Times New Roman',serif; font-size: 14px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; text-align: justify; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; background-color: #ffffff;\">These companies also claim to provide 24&#215;7 information portals and provide continuous access to data such as phishing attacks, URL\u2019s or domain names, IP addresses, hosts, targets, <a href=\"https:\/\/www.happiestminds.com\/solutions\/cyber-risk-protection-platform\/\">cyber-attack<\/a> indicators and threat actors. The key values proposition here is (read it carefully) \u201cyour busy IT team does not have the time and capabilities to analyze emerging threats\u201d.<\/p>\n<p style=\"line-height: 1.5714em; margin: 0px 0px 16px; color: #333333; font-family: Bitter,'Times New Roman',serif; font-size: 14px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; text-align: justify; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; background-color: #ffffff;\">Who is there to decide that the so-called \u201cemerging threat\u201d is also a threat for our organization? Who ensures that this is not looked at by the firewall that our organization already has in place? What is the incremental threat perception improvement that these services provide? How different does it sound from an organized, well-funded attempt at making people pay for junk information that insinuates fear?<\/p>\n<p style=\"line-height: 1.5714em; margin: 0px 0px 16px; color: #333333; font-family: Bitter,'Times New Roman',serif; font-size: 14px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; text-align: justify; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; background-color: #ffffff;\">It is essentially impossible to find out what is information and what is intelligence. The information dump that is being sold as intelligence in the name of \u201cthreat intelligence\u201d is not even worth a penny, if we look at it practically. All the latest \u201cintelligence\u201d about the new forms of attacks or evolving threats makes sense only if it can be fed into the existing defense mechanisms in real time, and that too auto-improves to combat the threat in real time. Sadly, that is still some time away.<\/p>\n<p style=\"line-height: 1.5714em; margin: 0px 0px 16px; color: #333333; font-family: Bitter,'Times New Roman',serif; font-size: 14px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; text-align: justify; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; background-color: #ffffff;\">The best of the best that is available right now or that is claimed to be available comes from <a href=\"https:\/\/en.wikipedia.org\/wiki\/MIT_Computer_Science_and_Artificial_Intelligence_Laboratory\">MIT&#8217;s Computer Science and Artificial Intelligence Laboratory<\/a> (<a style=\"text-decoration: none; color: #e30613; outline: 0px;\" href=\"http:\/\/www.csail.mit.edu\/\">CSAIL<\/a>). It has been named This offers 3X higher predictive abilities and 5X fewer false positives than the best threat intelligence analytics available today. Even this breakthrough threat intelligence platform takes several hours to refine the continuously generated threat models. Research and common sense tell us that a couple of hours are what it takes for cyber-criminals to intrude, steal and get away.<\/p>\n<p style=\"line-height: 1.5714em; margin: 0px 0px 16px; color: #333333; font-family: Bitter,'Times New Roman',serif; font-size: 14px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; text-align: justify; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; background-color: #ffffff;\">The moral of the story is, threat intelligence might become a usable reality one day with tangible advantages and real business benefits, but as of now, it can only be classified as a &#8220;fad&#8221; that is being used by the <a title=\"security technology \" href=\"https:\/\/www.happiestminds.com\/services\/it-security-services\/\" target=\"_blank\" rel=\"noopener\">security technology<\/a> firms to milk clients by playing on fear, without really offering much in return.<\/p>\n<p style=\"line-height: 1.5714em; margin: 0px 0px 16px; color: #333333; font-family: Bitter,'Times New Roman',serif; font-size: 14px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; text-align: justify; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; background-color: #ffffff;\"><strong>Published In: <a href=\"http:\/\/www.infosecurity-magazine.com\/blogs\/threat-intelligence-answer-threats\/\" target=\"_blank\" rel=\"noopener\">Infosecurity-Magazine<\/a><\/strong><\/p>\n<div class=\"pld-like-dislike-wrap pld-template-2\">\r\n    <div class=\"pld-like-wrap  pld-common-wrap\">\r\n    <a href=\"javascript:void(0)\" class=\"pld-like-trigger pld-like-dislike-trigger  \" title=\"Like\" data-post-id=\"3600\" data-trigger-type=\"like\" data-restriction=\"cookie\" data-already-liked=\"0\">\r\n                        <i class=\"fas fa-heart\"><\/i>\r\n                <\/a>\r\n    <span class=\"pld-like-count-wrap pld-count-wrap\">0    <\/span>\r\n<\/div><\/div>","protected":false},"excerpt":{"rendered":"<p>The threat landscape has been dynamic and ever changing, and the growth and rapid advancement in cyber-attacks against enterprises and individuals have rendered traditional cyber-security measures virtually obsolete. To combat the new age of threats, more security enterprises are turning to threat intelligence, a vector or a knowledge item that is based on evidence, context, [&hellip;]<\/p>\n","protected":false},"author":139,"featured_media":999,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[139,118,100],"tags":[400,1630,1631,1680],"class_list":["post-3600","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-security","category-threat-management","category-vulnerabilities","tag-cyber-security","tag-threat-intelligence","tag-threat-intelligence-platform","tag-vulnerabilities"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/posts\/3600","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/users\/139"}],"replies":[{"embeddable":true,"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/comments?post=3600"}],"version-history":[{"count":1,"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/posts\/3600\/revisions"}],"predecessor-version":[{"id":12026,"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/posts\/3600\/revisions\/12026"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/media\/999"}],"wp:attachment":[{"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/media?parent=3600"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/categories?post=3600"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.happiestminds.com\/blogs\/wp-json\/wp\/v2\/tags?post=3600"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}