CHAPTER 1 -4 Flashcards
Timeliness
New Information
Confidence Levels
Evaluation method determined by timeliness, relavancy, and accuracy
What are the 3 confidence levels
high
medium
low
Indicator
Result of an observable event in a network
Any event used to gain understanding
STIX
Structured Threat Information eXpression
Who developed STIX?
MITRE and OASIS CTI
STIX is structured so that users can describe 4 types of threats
motivation
abilities
capabilitiese
response
TAXII
Trusted Automated eXchange of Intelligence Information
What is TAXII
Defines how cyber threat information can be shared via services and message exchanges
List of Threat Actors
Nation-State
Hacktivist
Organized Crime
Insider Threat
Nation State
Well Funded
On behalf of government or government agencies
Hacktivist
Social goal through hacking
decentralized
Organized Crime
For the money
Often uses ransomware
Insider Threat
Intentional
Unintentional
Threat Classifications
Known vs unknown threats