Does the term "novel attack" resonate with security teams? or does "unknown attack" resonate better? What would you consider novel/unknown attacks? Does your current threat detection solution detect novel/unknown attacks?

4.3k views1 Upvote3 Comments

Sort by:

Director of Information Security in Services (non-Government)2 years ago

Novel attack resonates more. These attacks may include multiple stages and exploit vulnerabilities to perform an EDR bypass, C2, or ransomware.

CISO in Software2 years ago

I always think of 0-day vulns and associated attacks as novel.

CISO (CISO) in Healthcare and Biotech2 years ago

Novel attack certainly resonates more. Unknown attacks are only unknown until forensics figure it out. A robust incident detection and response system (SIEM, UEBA, XDR) should be able to detect unusual activity and let your SOC investigate. them.

Content you might like

How can security leaders in smaller organizations stay informed about emerging threats if they don’t have access to formal threat intelligence feeds?

Why do you think there are so few mature AI-driven autonomous pentesting solutions on the market, and why does this topic seem to generate more hype than in-depth technical discussion?

How many 3rd-party scripts does your website load into web visitors' browsers before they accept or decline your organization's privacy consent notice?

None11%

1-538%

6-1023%

11-2018%

21-493%

50+1%

I don't know4%

View Results

How do you monitor and restrict the types of visitor behavior information and PII 3rd-parties can discern, record, or extract via scripts and applications on your website?

We don't use any 3rd-party scripts17%

We can't monitor or restrict 3rd-party script behavior on our website31%

We trust vendors based on initial reviews20%

We test scripts periodically17%

We use Web Privacy Management, WebAppSec, or PriSec Software9%

We outsource website privacy and app security monitoring services3%

Other (please describe)

View Results

Does anyone currently use Athena Security, a company that offers software for security portal management? I’d love to get feedback from anyone who has experience with their platform.

Does the term "novel attack" resonate with security teams? or does "unknown attack" resonate better? What would you consider novel/unknown attacks? Does your current threat detection solution detect novel/unknown attacks?

Sort by:

Content you might like

How can security leaders in smaller organizations stay informed about emerging threats if they don’t have access to formal threat intelligence feeds?

Why do you think there are so few mature AI-driven autonomous pentesting solutions on the market, and why does this topic seem to generate more hype than in-depth technical discussion?

How many 3rd-party scripts does your website load into web visitors' browsers before they accept or decline your organization's privacy consent notice?

How do you monitor and restrict the types of visitor behavior information and PII 3rd-parties can discern, record, or extract via scripts and applications on your website?

Does anyone currently use Athena Security, a company that offers software for security portal management? I’d love to get feedback from anyone who has experience with their platform.

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

How are U.S. CISOs Addressing Liability Risk?

CrowdStrike Outage: Impact And Recovery

Impact & Perceptions of A Privacy-First Digital Era

Challenges & Tools For A Privacy-First Internet Age

IT and Infosec Collaboration on Vulnerability Patching

Take Your Insights On-the-Go