, 6 tweets, 1 min read
My Authors
Read all threads
Hot take: DDoS is a cyber attack and in the wrong circumstances, it can impact integrity too. Worked with a customer a few months back that saw data corruption secondary to a DDoS.

But even if it "just" impacts availability, a DDoS is still a cyber attack. 1/
Go ahead and tell the board "we're protected against cyber attacks" then get hit with a two day sustained outage in the face of a DDoS. When the board asks why they lost days of business, just explain "DDoS isn't a cyber attack, my Twitter poll said so." 2/
That's what we like to call "a resume updating event."

Only elitist infosec gatekeepers try to argue what is and isn't a cyber attack based on the techniques used. Real professionals (aka "the people the business listens to") understand that impact is everything. 3/
This reminds me (a lot) of an intrusion some years ago where a customer said "wow, these guys suck. They're hacking with batch scripts." My analyst re-framed that as "they bypassed your security controls and operated undetected for months using batch scripts." He's not wrong. 4/
No, security basics aren't always the coolest things to do. But they're damn important. Every time someone misses an easy security control, so many in the community dog pile on. But for some reason we're also piling on to someone claiming a win for the basics... 5/
I'll tell you that I've investigated multiple attack groups crossing between orgs using B2B VPNs. They only use the least advanced tools and techniques they need to achieve their specific goal. Observed sophistication is correlated with security program sophistication. /FIN
Missing some Tweet in this thread? You can try to force a refresh.

Enjoying this thread?

Keep Current with Jake Williams

Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

Follow Us on Twitter!

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!