Home » Security Bloggers Network » What Is Cyber Threat Hunting? [2019]
What Is Cyber Threat Hunting? [2019]
Threats to cyber security have been around for decades, but the sophistication and motivations of attackers have evolved. In the early days, they carried out relatively simple, insignificant attacks in an attempt to show off their programming abilities; now, sophisticated cybercriminals (sometimes sponsored by governments and companies) launch serious attacks to steal products and ideas, or other data, from digital infrastructure.
This change in the cyber security landscape has revealed a need for cyber threat hunting, a proactive way for companies and governments to protect their intellectual property and products from theft. In this article, we’ll identify what cyber threat hunting is, how it works, and the tools and processes used to carry it out.
What is cyber threat hunting?
Cyber threat hunting, also called cyber threat detection, describes the activities of a specialized or experienced security analyst. A cyber threat hunter aims to proactively search for evidence of suspicious activity that could be indicative of a breach or malicious intent.
According to SecurityIntelligence, while 80% of cyber threats can be mitigated by automated security tools and security operations center (SOC) analysts, the remaining 20% of attackers who sneak into networks undetected require more sophisticated methods of threat-hunting. Of that 20%, half can’t be detected with programmatic solutions; for this most advanced 10%, threat hunting is the best solution.
Watch this free webinar to find out how the open-source tool osquery helps you be proactive in hunting down threats.
Threat hunting assumes that (Read more...)
*** This is a Security Bloggers Network syndicated blog from Uptycs Blog authored by Amit Malik. Read the original post at: https://www.uptycs.com/blog/cyber-threat-hunting