Does the term "novel attack" resonate with security teams? or does "unknown attack" resonate better? What would you consider novel/unknown attacks? Does your current threat detection solution detect novel/unknown attacks?

4.3k viewscircle icon1 Upvotecircle icon3 Comments
Sort by:
Director of Information Security in Services (non-Government)2 years ago

Novel attack resonates more. These attacks may include multiple stages and exploit vulnerabilities to perform an EDR bypass, C2, or ransomware. 

Lightbulb on1
CISO in Software2 years ago

I always think of 0-day vulns and associated attacks as novel.

CISO (CISO) in Healthcare and Biotech2 years ago

Novel attack certainly resonates more. Unknown attacks are only unknown until forensics figure it out.  A robust incident detection and response system (SIEM, UEBA, XDR) should be able to detect unusual activity and let your SOC investigate. them.

Content you might like

Yes54%

No, but we are considering it41%

No, and we don't plan to4%

View Results

Identity (Okta, Ping, Azure Active Directory, Sail Point)34%

SASE Secure Access Service Edge (zScaler, Cisco, Palo Alto, VMware)45%

XDR (Microsoft, FireEye, McAfee, Cisco, Palo Alto, SentinelOne)11%

UEM (i.e. Ivanti/MobileIron, WorkspaceONE, Intune)8%

View Results