A Real-World Example of the Benefits of Sharing Threat Intelligence
When Andrew de Lange was the head of intelligence and incident response at a major bank, a critical incident occurred and needed to be secured. His team successfully hunted down backdoor activity and hands-on keyboard lateral movement by an adversary who had been active in the environment for quite some time. His team maintained an intelligence-sharing community during the collection of artifacts, and intel sharing played a crucial role in finding and stopping nefarious activity within the trusted community.
In this presentation, Andrew, Technical Director, MEA at Anomali shares how threat intelligence sharing and collaboration were essential in resolving this incident and improving the bank’s overall security posture.
Key topics covered in this session include:
- Threat intelligence sharing principles
- A timeline of a critical incident based on a real-world scenario
- The value of sharing threat intelligence
Watch the webinar to see why we cannot only consume shared intelligence but must also add our own contributions.