A mini rant disguised as a cybersecurity taxonomy Hacktivist / defacer / skidiot These operators don’t usually look for a long dwell time, instead seeking media attention (or peer recognition.) Skills vary widely, from the sophisticated Phineas Phisher (who discovered an 0day vulnerability in a router, built an exploit that they honed attacking third party systems, […]
Archives for September 2017
Counterintelligence for Cyber Defence
Intelligence analysis enables better defences against threat actors Counter intelligence analysis provides a framework both for understanding threat actors and also for conceptualising cyber defence. The fundamentals of counterintelligence threat analysis are familiar from law enforcement themed media (cop shows): Means, motive, and opportunity In intelligence parlance the terms used are: Capability Intent Opportunity These are […]
Terrorists talking points
Terrorists know the value of sensational media coverage of every lame attack. That is why they encourage lame attacks, which is all they can really achieve these days. If there was responsible coverage of attacks, would terrorist organisations have to invest more into trying to pull off “spectaculars”? I suspect they would. And trying to […]