The DNA of cybersecurity failure

Cybersecurity has become one of the most important aspects determining the safety of companies, governments and individuals in the modern age. Headline-grabbing examples of major cybersecurity breaches have become increasingly commonplace, from the Sony Pictures hack in 2014 that points to a hostile foreign government to the exposure of as many as 110 million Target customers’ credit card details due to sophisticated hacking techniques and inadequate response capabilities – not to forget on-going allegations and…

For cybersecurity success, double-down on developing better detectors

The basis of threat detection in security operations centres over the past decade has predominantly relied on rules, commonly defined by SIEM vendors. These “rules” (also called alarms, alerts or use cases depending on the SIEM vendor, or as we prefer to call them “detectors”) then generate alerts that tell analysts that there is a potential threat and helps to produce data that can unearth trends in what types of attacks are common at any given…