Does your business have a cyber threat intelligence strategy

February 15, 2022 • Blog
Posted by
Damian Gomez, Tesserent
Share this article

The key to identifying emerging cyber threats before they develop into serious risks is to undertake intelligence monitoring.

Threat intelligence is one of the most powerful tools organisations have at their disposal to understand and mitigate the risks of a cyber attack.

Cyber risk management means understanding the environment you are operating in so that you can predict the likelihood of an incident occurring, and design and implement appropriate mitigation strategies to minimise the probability and disruption.

That environment includes constantly adapting adversaries that have established collaborative networks that operate in private, in the darkest recesses of the internet. Designing appropriate strategies means first identifying what can be found in these underground networks.

Threat monitoring intelligence experts can find stolen data, personal information, breached credentials, proprietary code and other sensitive data.

It can take months before internal security teams become aware of a breach and why undertaking regular external intelligence monitoring can minimise the dwell time of some attacks.

In one recent case, a financial services company learned that a hacked social media account led to a potential breach of the company's VPN.

A high-ranking employee was using the same password for the VPN as their social accounts. When the social media accounts were compromised, the VPN became vulnerable. It was only by scouring the Dark Web that the threat was detected and neutralised.

Navigating this complex labyrinth is about more than finding an IP address and connecting to TOR or finding an Internet Relay Chat channel. It requires a variety of different intelligence-gathering techniques, tools and knowledge that are far outside the capability of traditional scanning tools and penetration testing

For organisations that feel they are at a heightened level of risk, it is advised to engage with experts that conduct ongoing monitoring.

As new risks emerge, you can be notified so you can put appropriate mitigation processes in place.

By monitoring the activities of criminals, Cyber security company can design strategies to avoid or minimise the damage from an attack.

Contact us

Speak with a Tesserent
Security Specialist

Tesserent is a full-service cybersecurity and secure cloud services provider, partnering with clients from all industries and all levels of government. Let’s talk.

Let's Talk
Tess head 4 min

Related Insights

Blog
The Evolution of Cybersecurity: NIST Releases Draft of Cybersecurity Framework 2.0
The Evolution of Cybersecurity: NIST Releases Draft of Cybersecurity Framework 2.0
Client Story
Client Story: PROTECTED Cloud Uplift Roadmap
Client Story: PROTECTED Cloud Uplift Roadmap
Client Story
Client Story: Achieving the Essential 8
Client Story: Achieving the Essential 8
Blog
Why Injection still matters, XSS attacks
Why Injection still matters, XSS attacks