Brian Kelly just posted a great article Their Risk is Our Risk I recommend the ecosystem weigh in on the paper and collaborate..... My initial thoughts: One of the most underutilized parts of the puzzle is the effective use of threat intelligence data. As we know when Universities either buy or get for free threat intelligence it comes to them in a way that then requires a massive amount of sorting and manual effort to then align the notification to the individual IP address. This in itself is a barrier for most of the medium and small colleges to utilize this data. Here is what I am hearing on the ground, "I have a small staff that is already overwhelmed and has grown tired of false positives and chasing rabbits down the preverbal rabbit hole". Why cant we receive this data already sorted and aligned so we can quickly take action. Well this is what we have already accomplished at Arctic Security with the Early Warning Service. Now

Posted by Pat Healy at 2024-05-07 17:56:26 UTC