Does the term "novel attack" resonate with security teams? or does "unknown attack" resonate better? What would you consider novel/unknown attacks? Does your current threat detection solution detect novel/unknown attacks?

4.3k views1 Upvote3 Comments

Sort by:

Director of Information Security in Services (non-Government)2 years ago

Novel attack resonates more. These attacks may include multiple stages and exploit vulnerabilities to perform an EDR bypass, C2, or ransomware.

CISO in Software2 years ago

I always think of 0-day vulns and associated attacks as novel.

CISO (CISO) in Healthcare and Biotech2 years ago

Novel attack certainly resonates more. Unknown attacks are only unknown until forensics figure it out. A robust incident detection and response system (SIEM, UEBA, XDR) should be able to detect unusual activity and let your SOC investigate. them.

Content you might like

Apart from compliance concerns, what are the toughest roadblocks currently preventing organizations from adopting AI-enabled security solutions?

How are you deciding which SOC or security operations work should be augmented or even fully automated with AI? Which tasks should remain entirely under human control and which should only require human oversight?

How do you effectively manage patch management in your organization? It is a very daunting operational task but yet important to secure your organization.

Virtual patch 36%

Leverage on AI agent for some low and medium severity59%

Conventional way of patch management (lots of human intervention)15%

View Results

When it comes to the vulnerability management process, where can current AI capabilities provide the most value? Have you had success with using AI-enabled tools specifically for deduplication, false positive reduction, prioritization, etc.?

For those who test mass notification systems with employees, what has been your typical response rate (e.g., 70%)?

<60% response rate24%

61% - 75% response rate50%

76% - 85% response rate26%

>86% response rate

View Results

Does the term "novel attack" resonate with security teams? or does "unknown attack" resonate better? What would you consider novel/unknown attacks? Does your current threat detection solution detect novel/unknown attacks?

Sort by:

Content you might like

Apart from compliance concerns, what are the toughest roadblocks currently preventing organizations from adopting AI-enabled security solutions?

How are you deciding which SOC or security operations work should be augmented or even fully automated with AI? Which tasks should remain entirely under human control and which should only require human oversight?

How do you effectively manage patch management in your organization? It is a very daunting operational task but yet important to secure your organization.

When it comes to the vulnerability management process, where can current AI capabilities provide the most value? Have you had success with using AI-enabled tools specifically for deduplication, false positive reduction, prioritization, etc.?

For those who test mass notification systems with employees, what has been your typical response rate (e.g., 70%)?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

How are U.S. CISOs Addressing Liability Risk?

CrowdStrike Outage: Impact And Recovery

Impact & Perceptions of A Privacy-First Digital Era

Challenges & Tools For A Privacy-First Internet Age

IT and Infosec Collaboration on Vulnerability Patching

Take Your Insights On-the-Go