Ninety-six percent of IT and business leaders across 13 countries surveyed by Mandiant reported satisfaction with their organization's threat intelligence quality but 79% noted that threat insights have not been leveraged in making most of their organizations' cybersecurity decisions, according to CRN.
Threat intelligence may not be contributing much to cybersecurity decision-making due to organizations being overwhelmed by the amount of information they have been receiving, said Mandiant Vice President of Intelligence Analysis John Hultquist.
While intelligence feeds could provide insights into advanced persistent threat operations and security vulnerabilities, Hultquist noted that tailored intelligence could be more beneficial in helping organizations focus on threats and bugs that require immediate attention.
"I think a lot of organizations make decisions based solely on their environment but fail to take into account the adversary, and whether or not they can even make use of these vulnerabilities, or whether or not theres proof-of-concept code, or how broad the distribution of exploits is. That information should be there in your risk calculus especially when you are trying to use a limited budget to make the best decisions," said Hultquist.
Change Healthcare attack linked to state-backed threat actors Major U.S. healthcare revenue and payment cycle management provider Change Healthcare was noted by its parent firm UnitedHealth Group to have been targeted by suspected state-sponsored threat actors in a cyberattack on Feb. 20, TechCrunch reports.