Does the term "novel attack" resonate with security teams? or does "unknown attack" resonate better? What would you consider novel/unknown attacks? Does your current threat detection solution detect novel/unknown attacks?

4.3k views1 Upvote3 Comments

Sort by:

Director of Information Security in Services (non-Government)2 years ago

Novel attack resonates more. These attacks may include multiple stages and exploit vulnerabilities to perform an EDR bypass, C2, or ransomware.

CISO in Software2 years ago

I always think of 0-day vulns and associated attacks as novel.

CISO (CISO) in Healthcare and Biotech2 years ago

Novel attack certainly resonates more. Unknown attacks are only unknown until forensics figure it out. A robust incident detection and response system (SIEM, UEBA, XDR) should be able to detect unusual activity and let your SOC investigate. them.

Content you might like

Which tech conference do you intend to attend in person next year or have already participated in this year, and what motivated your choice?

There has been an upswell in demand for the use of MCP servers for our development community. What security criteria and considerations do you use for performing a security review, hardening and approval process?

If you have a budget to improve your security operations, are you planning to invest in any of the following initiatives?

Analytics platforms to automate the detection of threats across endpoints, networks, and identities.61%

Solutions to automate the response to threats across endpoints, networks, and other systems.54%

None of the above1%

View Results

Are you seeing changes in the quality or speed of threat intelligence from sources you relied on in previous years? Can you share how you are being impacted so far by the uncertainty around public-private partnerships for cyber information sharing?

Are you using a cloud management platform (cost, asset management, orchestration, security, etc) for managing cloud workloads?

Yes64%

No26%

Planning to9%

View Results

Does the term "novel attack" resonate with security teams? or does "unknown attack" resonate better? What would you consider novel/unknown attacks? Does your current threat detection solution detect novel/unknown attacks?

Sort by:

Content you might like

Which tech conference do you intend to attend in person next year or have already participated in this year, and what motivated your choice?

There has been an upswell in demand for the use of MCP servers for our development community. What security criteria and considerations do you use for performing a security review, hardening and approval process?

If you have a budget to improve your security operations, are you planning to invest in any of the following initiatives?

Are you seeing changes in the quality or speed of threat intelligence from sources you relied on in previous years? Can you share how you are being impacted so far by the uncertainty around public-private partnerships for cyber information sharing?

Are you using a cloud management platform (cost, asset management, orchestration, security, etc) for managing cloud workloads?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

How are U.S. CISOs Addressing Liability Risk?

CrowdStrike Outage: Impact And Recovery

Impact & Perceptions of A Privacy-First Digital Era

Challenges & Tools For A Privacy-First Internet Age

IT and Infosec Collaboration on Vulnerability Patching

Take Your Insights On-the-Go