A small number of topics get intelligence driven incident responders incredibly frustrated:
Using intelligence to mean smart (I’ll share more about that later this week)
Bad attribution based on incomplete information and bad assumptions
Misuse of the term APT (in most cases by marketing departments)
Advanced Persistent Threat remains the buzzword of choice for vendors, but its used incorrectly, and lots of people know that and don’t say anything. As a result I want to go on the record and correct a couple key misnomers.
more here.......http://sroberts.github.io/2015/02/16/apt-is-a-who-not-a-what/
Using intelligence to mean smart (I’ll share more about that later this week)
Bad attribution based on incomplete information and bad assumptions
Misuse of the term APT (in most cases by marketing departments)
Advanced Persistent Threat remains the buzzword of choice for vendors, but its used incorrectly, and lots of people know that and don’t say anything. As a result I want to go on the record and correct a couple key misnomers.
more here.......http://sroberts.github.io/2015/02/16/apt-is-a-who-not-a-what/