“Knowing the Enemy”- Creating a Cyber Threat Actor Attribution Program presented at bsidesdc 2016

by Jack Johnson,

Summary : Cyber-attacks have continued to rise, with the existing threats progressively evolving at a rapid pace while newer more lethal threats are emerging at an alarming rate. Despite organizations having increased their investments in technological solutions, we continue to see high-impact data breaches. This is partly due to the fact that technical responses and safeguards are no longer sufficient preventative measures as they only remove the instruments of the attacks and not the causes themselves, the human attackers.
Technologies, Tactics and Procedures (TTPs) surrounding Cyber Threats are a part of the daily Cyber Security discussion. However a very critical topic of discussion which must be included in the conversation surrounds the attribution and ultimately the identification of Cyber Threat Actors and the steps necessary to reach that goal.