BY: Sara Peters
Everyone will ask whodunnit, but how can an organization put that information to practical use during disaster recovery and planning for the future?
In normal life crises, the jump to assess blame is often the emotional reaction, but rarely the appropriate reaction. Assessing blame for who hit you with a cyberattack, however -- if not the individual, at least the general classification -- could be effective, if not essential to your recovery efforts, according to speakers at a Dark Reading Virtual Event Tuesday.
We asked speakers flat-out, "does attribution matter?"
Does it matter?
"It depends," said Mark Potter, principal systems security officer for Strategic Health Solutions. "It really depends, on the size and budget of your organization, the value and type of the assets, and types and frequency of attacks."
If you don't have the internal skill set to go hunting for an attacker or the funds to hire outside contractors, says Potter, then it's more important to get the business back to normal.
If you've got the resources, though, there are areas where accurate attacker attribution can help.
full article here:
Userlevel 7
Interesting question & article...thanks for posting, Anthony...but as long as someone knows who the attacker is...as someone needs to hunt them down to try to stop them doing the same in the future.
Reply
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.