14,952
edits
Changes
Jump to navigation
Jump to search
Line 1:
Line 1: − + +
no edit summary
A '''threat actor''' is anyone who has the potential to impact [[Cybersecurity]]. The phrase ‘threat actor’ is also commonly used in the field of [[cybercrime]]. The threat actor can be a person, group of people, or even an entire country. It refers to anyone who is a key driver or participant in a malicious action targeting organizational or personal IT security.<ref>[https://home.sophos.com/en-us/security-news/2021/what-is-a-threat-actor.aspx What is a threat actor, Sophos]</ref>
A '''threat actor''' is anyone who has the potential to impact [[Cybersecurity]]. The phrase ‘threat actor’ is also commonly used in the field of [[cybercrime]]. The threat actor can be a person, group of people, or even an entire country. It refers to anyone who is a key driver or participant in a malicious action targeting organizational or personal IT security.<ref>[https://home.sophos.com/en-us/security-news/2021/what-is-a-threat-actor.aspx What is a threat actor, Sophos]</ref>
==Trends in Vulnerabilities==
In 2021, threat actors targeted internet-facing systems (like email and virtual private network servers). Generally, researchers or other benign actors released proof of concept code within two weeks of the vulnerability’s disclosure, likely facilitating threat actors' exploitation of the vulnerability. Threat actors were slightly less likely to continue exploiting publicly known, dated software vulnerabilities (which they did in 2020 and earlier).<ref>[https://www.cisa.gov/uscert/ncas/alerts/aa22-117a 2021 Most Common Vulnerability Exploits, CISA]</ref>
==Relationships to Targets==
==Relationships to Targets==
Threat actors can be cybercriminals, insiders, and/or nation-states.
Threat actors can be cybercriminals, insiders, and/or nation-states.