The article discusses biases in cyber threat intelligence evaluation. It covers biases related to hindsight, visibility, threat narratives, and viewing all activity as malicious. It also warns against assuming fixed rules on the Internet, overestimating adversaries, and highlights two attribution standards: “little a” and “Big A.” Analysts are urged to stay objective and consider the evidence carefully while acknowledging the limitations of attribution.
Read more:
https://medium.com/@mrichard91/common-cyber-threat-intel-biases-9d6f410f5829
We learn Security! 