Deviation From Normal Does Not Always Mean Malicious Intent

Deviation From Normal Does Not Always Mean Malicious Intent

An approach to solving cybersecurity problems is to use machine learning to baseline normal behaviors so that deviations from normal can be identified.  This, at first glance makes perfect sense.  However, there are flaws that must be considered and avoided. 

Threat Intelligence: Non-Malicious Deviations

One of the flaws is that deviations from normal may not be malicious in nature. They may reflect new behaviors that are non-malicious in nature. For example, new software, new policies, new scope of work, or any other of a myriad of changes may cause a deviation from normal. 

Read More »

Subscribe to Email Updates

Subscribe via RSS to the blog

Recent Posts