Unraveling the Mind Behind the APT - Analyzing the Role of Pretexting in CTI and Attribution
Unknown
Black Hat USA 2024 · Day 1 · Briefing
In the ever-evolving landscape of cyber threats, attributing sophisticated attacks to specific Advanced Persistent Threat (APT) groups remains a formidable challenge. While traditional methods of threat intelligence focus on technical indicators, tactical sequences, and strategic victimology, a critical dimension often goes overlooked: the behavioral characteristics of the attackers themselves. Sanne, a Senior Analyst at Mandiant, presented a compelling case at Black Hat USA for integrating "Vibe Intelligence" or **Vint** into the cyber threat intelligence (CTI) framework, specifically for analyzing phishing campaigns launched by nation-state actors.