1.5 different threat actors, vectors, and intelligence sources

Question 1

APT

Answer 1

Advanced Persistent Threat
attackers in the network and undetected

Question 2

Attack Vectors

Answer 2

method or path that a hacker uses to gain access
* direct physical attack
* wireless
* email
* supply chain
* social media
* removable media
* cloud

Question 2

OSINT

Answer 2

Open-source intelligence

Question 3

AIS

Answer 3

Automated Indicator Sharing

a free service from the Department of Homeland Security (DHS).

It allows public and private organizations to exchange cyber threat indicators and defensive measures in real time.

Question 4

IOC

Answer 4

Indicator of Compromise
forensic data that indicate a potential threat or an attack has occurred

Question 5

RFC

Answer 5

Request for Comments
formal document that contains specifications and organizational notes about topics related to the internet and computer networking.

Question 6

TTP

Answer 6

Adversary tactics, techniques,
and procedures

Question 7

STIX

Answer 7

Structured Threat Information eXpression

a standardized language for sharing and storing cyber threat information

led by DHS

Question 8

TAXII

Answer 8

Trusted Automated eXchange of Intelligence Information

a collection of services and message exchanges to enable the sharing of information about cyber threats across product, service and organizational boundaries.