everyone: older news
Are Your Hackers Seasonal?
by Brent Kirkpatrick
(Date Published: 10/16/2018.)
Happy fall! During the fall, we have the start of a new school year. In the United States, we have the biggest shopping day of the year, and we have several holidays. While you enjoy this season, please ask yourself if your hackers attack in a seasonal pattern.
How do we detect a seasonal pattern of hacking? We take incident data, or security log data, and plot the number of incidents for a whole year (perhaps using a tool like Splunk). Then we plot the previous year. Let's take our data month-by-month. For each month, we compute the mean of number of incidents for the two years. The change in this mean from month-to-month is our seasonal pattern. Now, consider 10 years of data, and again compute the monthly means. With ten years of data, we have a much better idea of the seasonal pattern.
This exercise in plotting and computing means is an exercise in data science. At Intrepid Net Computing, we do data science. We compute even more sophisticated patterns that allow us to discern specific events and detect exploit machine code.
Many fields are known to have seasonal patterns. For example employee hiring patterns are seasonal, with December being slow and January being very busy. Buying patterns are also seasonal. Are your hackers attacking in a seasonal pattern?
Please contact us at Intrepid Net Computing if you need scientific solutions to cyberattacks.
Trojan Hunter. Digital forensics for Trojans at an accessible, fixed price. For any operating system.