tl;dr we have a synthetic dataset not correlated to actual attacks and we stand behind misleading people #DBIRhttp://blog.kennasecurity.com/2016/05/collaborative-data-science-inside-the-2016-verizon-dbir-vulnerability-section/ …
-
Using IDS sigs for successful exploitation is the kind of statistic that only a data scientist could love!
Kenna's top10 vulns match up to the top triggered sigs on every Snort install ever.pic.twitter.com/7z4W7LLo3p
-
-
That should have been a major hint that they weren't measuring anything at all, but somehow...pic.twitter.com/AAOneIzBws
-
If you missed that, Kenna thinks attackers are successfully exploiting FREAK and an RDP DoS and so you should prioritize them above new CVEs
- 8 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.