What terms are trending in the Cybersecurity world?
Quoting from this article at TechCrunch:
Time and time again we see undetected attackers lurking in organizations’ networks for months – even years. Just this past October, it came to light that cyber attackers linked to the Chinese government breached Samsung Pay provider LoopPay for months without detection. Stories like these are a reminder that our best means for minimizing a breach’s impact…Active Response
As organizations get better at detecting threats, the number of alerts their systems create also increases. This causes what security operations center (SOC) managers call alert fatigue. Too many alerts, but not enough time to respond to them. Imagine knowing about all the wildfires in an area but not having a mechanism to prioritize and address the fire…
Identifying trends and patterns in an organization is a good starting point to mitigate systemic problems as well as identifying threats. Security analytics are the result of data analysis across multiple sources of data, often log data enriched with non-log data such as threat intel. The purpose of security analytics is to provide actionable knowledge to the security analysts…
Public Key Cryptography
For many of us, the word cryptography reminds of James Bond films with incredibly smart yet evil mathematicians feverishly working to break the code to a nuclear warhead. But today, we use public key cryptography hundreds or thousands of times per day – whether it is purchasing a product online, digitally signing a document or to logging in to a device or website via a multi-factor authentication system. In an oppressive country, public key cryptography may be the only way for citizens and dissidents to exchange messages…”
Read the entire article here.
How do these terms apply to Defensive Cyber Operations?
Are these techniques that we can leverage in our own mission areas?
How do we keep up with industry and learn from commercial cybersecurity efforts?