Cyber Kill Chain Investigation & Assessment
CYBER KILL CHAIN
What is a typical cyber kill chain?
The concept “cyber kill chain” refers to the structure, process & methodology for intrusions into a computer network/system by means of a cyber attack. These are the typical phases:
- target identification – who is doing. what; when, where, and how?
- force dispatch to target – mission in motion/move into position
- decision and order to attack target – strike – prepare to proceed with the attack
- destruction or elimination of the target
- report of the attack
Phases in a ‘typical cyber kill chain’:
Why do we need to understand the nature of a cyber attack?
1st you have documented and really understood how a cyber attack, data breach, or ransomware attack happened. Then you can develop tools and strategies to limit breaches, respond to cyberattacks, and minimize risks. If you don’t know exactly what is happening, your counter-measures will be of little effect against a trained attacker or group of attackers.
During each phase of an attack, there are specific defense measurements that can be taken. Contact us for a Cyber Assessment.