"Knowing What the Enemy Knows Is Key to Proper Defense"

Etay Maor, the Chief Security Officer (CSO) at the threat intelligence firm IntSights gave a presentation at the Black Hat Europe 2020 virtual event in which they emphasized the importance of knowing what the enemy knows when defending an organization against cyber threats. Maor also highlights the need for organizations to examine how much they know about themselves so they could enhance protection against such threats. According to Maor, attackers are increasingly using social engineering techniques, simple web searches, and Dark Web markets to obtain credentials to log into a targeted network instead of breaking into it. The significant growth in remote work due to the COVID-19 pandemic has opened more opportunities for cybercriminals to find this type of information. Organizations are encouraged to explore the different ways in which criminals can collect information. This article continues to discuss the importance of thinking like an attacker to defend an organization against cyberthreats, how cybercriminals could collect intelligence that could be used in an attack, and the increased availability of such information in underground criminal marketplaces. 

Dark Reading reports "Knowing What the Enemy Knows Is Key to Proper Defense"