-
@HostileSpectrum Our usual assumption is that attackers are indeed skilled and well funded (for their particular discipline). Remember: attackers only need 1 hole, defenders need to plug them all. There already is a huge differential, and transparency favors defenders more than attackers.Permalink On twitter.com
❤️ 1 Favorite Mood +7 🙂
-
@HostileSpectrum However, you are of course correct that unskilled attackers benefit from PoC disclosure. I keep wondering how much that is, though, because weaponizing a working but harmless PoC already requires skill quite above the "script kiddie" level. It's a wide spectrum of skills...Permalink On twitter.com
-
@HostileSpectrum The second aspect is that economical incentive can be in favor of attackers as well. Exploitation is often attached to a "business model" (ransomware etc) that can give good funding for exploit development. Defenders are often a cost factor without immediate economic benefit.Permalink On twitter.com
-
@HostileSpectrum Therefore, only generally well funded organizations (or those forced to by external factors) will typically have strong defender teams, and a tiny subset of those would also have (simulated) attack teams as @halvarflake stated. Transparency also benefits small defender teams.On twitter.com