How to Pick a Service to Help

According to RiskIQ, “every minute, close to $858,153 is lost to cybercrime, and 1,080 people fall victim. Despite businesses’ best efforts to guard against external cyberthreats, which spend up to $143,936 in 60 seconds, bad actors continue to proliferate online.” That’s a pretty sobering assessment of the state of cybercrime these days, and the motivation for a new breed of security professionals – the cyberthreat hunter.

Firewalls, intrusion detection and prevention systems, anti-malware packages, vulnerability scans, and the like are still a necessary part of a company’s defenses. They do a great job in stopping known threats coming into the network. But what about the unknown? And what about threats that exist outside of the network?

To deal with such threats, the notion of proactively seeking out potential or looming external threats against a company is gaining traction. Cyberthreat hunting is the process of searching for advanced threats – those that are either so new or so elusive that protection technologies don’t pick them up – as well as reputational threats like those on social media accounts and the dark web. Typically, this hunt involves combing through a company’s network and the data collected in logs, as well as stuff outside of the firewall (like the dark web), then analyzing that information to seek out and identify threats. The goal is to sniff out threats, then prevent or block them before they can turn into full-blown attacks.