Steganography-exploits: SOC analysts see this.........

A Schrumpeterian gale of change has just blown across the cyber threat landscape because the bad guys have just stepped-up their game.

The super league of cyber attackers have now largely donned the 'cloak of invisibility' and are hollowing-out targets using steganography-based threat vectors. Why risk being detected when its easier to run your attack Command & Control channel and exfiltrate sensitive information in stealth?

The first era of cyber defence saw significant focus on 'Threat Detection', and trying to identify bad data or bad behaviour; but even with recent advances in correlation, ML, and AI - failure is inevitable - these defences can't detect the unknown or undetectable, and evasion is fairly trivial.

These constraints led to the need to augment 'Threat Detection' with 'Threat Isolation' technologies and heralded the birth of the birth of the second era of cyber defence. The isolators are growing rapidly today but leave organisation's needing to punch a hole in the defences when they need content, moreover, they are prone to failure and evasion is possible.

The third era of cyber acknowledges that both prior era's only reduce the threat by an unknown amount, leaving an unquantifiable business (residual) risk. The only viable way to defeat very sophisticated and undetectable cyber threats is to invest incrementally in technology that will protect organization's as we move into the third era of cyber defence. The third era moves us to a complete 'Threat Removal' approach - it is the secret sauce - for driving full enablement in the growing digital economy.