Does the term "novel attack" resonate with security teams? or does "unknown attack" resonate better? What would you consider novel/unknown attacks? Does your current threat detection solution detect novel/unknown attacks?

4.3k viewscircle icon1 Upvotecircle icon3 Comments
Sort by:
Director of Information Security in Services (non-Government)2 years ago

Novel attack resonates more. These attacks may include multiple stages and exploit vulnerabilities to perform an EDR bypass, C2, or ransomware. 

Lightbulb on1
CISO in Software2 years ago

I always think of 0-day vulns and associated attacks as novel.

CISO (CISO) in Healthcare and Biotech2 years ago

Novel attack certainly resonates more. Unknown attacks are only unknown until forensics figure it out.  A robust incident detection and response system (SIEM, UEBA, XDR) should be able to detect unusual activity and let your SOC investigate. them.

Content you might like

Analytics platforms to automate the detection of threats across endpoints, networks, and identities.61%

Solutions to automate the response to threats across endpoints, networks, and other systems.54%

None of the above1%

View Results

Yes64%

No26%

Planning to9%

View Results