The Art of Cyberwarfare, and how to Defend your Enterprise

By Charles Duckett | September 13 2018

The cyber world is as volatile as ever. Attacks on private companies are growing exponentially and the evidence supports that this trend has no intention of stopping. From this fact alone, it is assured that there are bad actors operating within the realm of cybersecurity. These actors can vary from contriving teenagers looking for a quick buck to nation-states attempting to steal government and trade secrets. Regardless, enemies exist; therefore, the natural thing to consider is how to protect your enterprise. 

Avoiding attacks is simply the process of identifying and securing the modes or vectors of attacks that are most common. These vectors can be inherent to the very hardware used within a network. The next step is to orient the cybersecurity of the network in a way that produces optimal results for security and business. The golden mean for this dilemma is something that takes time and effort in the realm of cybersecurity, but with the proper intelligence resources can be allocated effectively. These remediations shift the environment for attackers, making it more challenging for an attacker to infiltrate and navigate the network. 

The environment in which cyber warfare is fought can take place within the physical structure of the network itself. This is the enterprise system where the information travels and resides. Consequently, the environment in the cybersecurity realm is largely dependent on the hardware integrated within an enterprise’s network. Now, imagine you’re a general of an army. If you’re going to confront enemies, which is evidently unavoidable in the cyber realm, it is paramount to fight in an environment that would maximize the chance of successfully defending your network. This is the only reason for defenses in the first place. So, it would be willfully naïve to consider that an attacker would not strive to obtain the same luxury. This is precisely what some bad actors are capable of or encourage. For example, nation-states with strong ties to the commercial activities within their jurisdiction are especially prone to fight this way. 

A nation-state such as China, which has a long track record of these nefarious activities, is capable of interfering with business operations of a computer hardware company to design inherent vulnerabilities or back doors so that they may attack with better odds of success. This makes determining the environment absolutely crucial for successful cyber defense operations. It is better to fight on your own terms than the enemy’s. 

In order to determine the environment, it is preferable to gather intelligence as to whether the current hardware is compromised by virtue of its assembly location or its proprietor. The proprietor might be coordinating with malevolent authorities or the location might indicate that such coercion is taking place. Obtaining supply chain intelligence enables better decision-making and better orientation of defense systems. 

Consolidating the environment in your favor is essential for successful defenses. But, what if it isn’t entirely clear who the bad actor is for a particular business? For some industries, it isn’t obvious who would want their information. Risk intelligence entails consolidating possible answers for this question and considering their capabilities. Gathering intelligence on possible bad actors means pulling information from a broad range of sources. Possible bad actors can be induced from determining who is selling your assets or assets similar to those your company holds on the dark web already. Also, statistics from various sources can provide a glimpse into who are the typical bad actors attacking your industry. 

These answers are a fundamental first step of consolidating risk within your network that allow manpower and effort to be focused in more productive means of business. Through risk and supply chain intelligence support, you can be assured your enterprise’s network is secured. However, neglecting to do so puts your network and its constituent assets at risk for a hostile takeover. These risks can manifest into real problems such as ransomware, trojan attacks, malware, etc. Risk intelligence offers the exceptional ability for defenders to take the initiative against intrusive bad actors. 

 

About Domain5: 

Domain5 is a committed cybersecurity company dedicated to all aspects of defense. Our support is flexible to any business demand large or small. We possess capabilities that extend from providing CISOs (Chief Information Security Officer) on-demand to compliance advise to risk intelligence and everything in between. These capabilities add up to a holistic experience that reconciles business operations with security demands to the highest possible efficiency. Our service allows your company to take control of the issues you face daily. 

Recent Posts