By Brian Prince on September 04, 2014
In some ways, an attack against an organization is similar to a house made of cards; removing one card can cause the whole thing to collapse.
This concept can be applied to the cyber kill chain framework created by Lockheed Martin that describes the phases of an attack. Disrupting any of these stages can be enough to thwart, or at least slow, a hacker. While security experts have been talking about this for years, recent high-profile breaches have underscored the importance of thinking not just about preventing attacks, but also ways the damage attackers can do can be limited or caught when an attack is underway.
"Depending on their skill set, budget, and risk tolerance, each security team will take a different approach to the kill chain," said Mark Nunnikhoven, Trend Micro’s vice president of cloud and emerging technologies.
"Some are great at minimizing their footprint which makes it hard for the attacker to weaponize what they've learned during reconnaissance," he said. "Others are great a detection and focus on the catching the attacker during the exploit or install phases. Regardless of the approach, every security team is trying to make it so the attacker must spend more time and energy on the attack than the return they get."
Full Article
Breaking the Cyber Kill Chain
Userlevel 7
+54
Userlevel 7
Kill Chain is a good approach at slowing down a attack or successfully stopping it. Pursuing the attacker is a plus
Reply
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.