Peer-Driven Insights

Threat Intelligence & Incident Response

About this topic

Threat intelligence and incident response refers to the collection, analysis, and use of threat data to anticipate and respond to security incidents. These practices enable timely risk mitigation and strengthen organizational resilience.

Featured One-Minute Insights

Sept 2024

How are U.S. CISOs Addressing Liability Risk?

New regulations taking effect in the U.S. mean that cybersecurity leaders could face legal liability in the event of an incident. What strategies are they using to protect themselves?
How are U.S. CISOs Addressing Liability Risk?

Active Ambassadors in This Topic

Rathik Pathak

Rathik Pathak

JM Financial Services Ltd

Travel and Hospitality, 1k - 5k

India
View All Community Ambassadors

Community Posts

Australia's government is considering a ban on ransomware payments — do you think that could be effective? Why or why not?

Read More Comments

How often do you run simulated ransomware attacks at your organization?

Once a month9%

Once a quarter42%

Once every 6 months16%

Once a year18%

We do not run ransomware simulations currently.13%

Other (comment below)

View Results

Have you ever intentionally engaged with a Phishing attack? What were the results?

Read More Comments

What are your current concerns about the state of cybersecurity?

What makes operational technology (OT) particularly vulnerable to cyber attacks?

Read More Comments

Which of the following security risks are you most concerned about affecting your organization moving into 2022?

Disruption via ransomware19%

Exploitation via phishing51%

Exfiltration of PII (Personally identifiable information)17%

Disruption via DDoS attacks4%

Disruption of a business-critical application7%

Other (comment below)

View Results

What misconceptions do people have about attack surface management?

What ransomware challenges are on the horizon?

Read More Comments

Why is ransomware still so pervasive? -Low-cost of entry It's difficult to catch the bad guys -Lower skillset is enough

Read More Comments

Have you experienced extreme stress or burnout while working in cybersecurity?

Yes; I had to take extended time off to recover17%

Yes; but I kept working anyway54%

Almost; I was able to catch it early and made changes19%

No; I have not experienced extreme stress or burnout9%

View Results

What is the difference between EDR and XDR?

Read More Comments

Can boards ever be held liable for security breaches?

Read More Comments

Are good backups really the best ransomware recovery strategy?

Read More Comments

If these companies were affected then the foundation of computing could be at risk. If you could manipulate at the hardware layer via the firmware, BIOS, ect then a threat actor could weaponize well below the operating system which brings in to question the integrity of the entire computing stack and everything above it.  The firmware and bios are like the rebar and concrete for a building. If that foundation is weak then the entire structure and anything dependent on it is at risk. We cannot underestimate the potential or the severity of these companies being potentially affected by the SolarWinds hack and what that means for the foundational computing hardware they provide to the world.  What do others think ?  How could this impact your organization ?  

Big tech companies including Intel, Nvidia, and Cisco were all infected during the SolarWinds hack - The Verge

What can CISOs/CIOs do to be effective despite lack of board readiness?

Read More Comments

Is XDR (extended detection response) a buzzword or a real transformational shift?

Read More Comments