I have no idea what point you're even trying to make here. Are you suggesting defenders need publicly available exploits to defend?
-
-
Not saying it's out of the reach of ALL attackers, just most. Only the very top percentage of attackers (nation/state & APTs) are doing this kind of work. Large majority of attackers are only using public tools.
-
Right, but it's only the large majority if you include opportunistic attacks - when assessing targeted attacks, we don't measure severity by number of affected users. If you group targeted and opportunistic attacks together, sure everything pails in comparison to trivial malware.
- 7 more replies
New conversation -
-
-
That being said, the numbers we deal with in targeted attacks are much lower than those you see in opportunistic attacks. We find that number of affected users is not a good metric for severity of targeted attacks - it works okay for opportunistic attacks though.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.