The collaboration validates particular connections, corresponding to confirming that CrowdStrike’s Vanguard Panda and Microsoft’s Volt Hurricane each symbolize the identical China-nexus menace group. Equally, Secret Blizzard and Venomous Bear have been recognized as aliases for a recognized Russian state-affiliated actor.
“This effort will not be about making a single naming normal,” Vasu Jakkal, company vice chairman at Microsoft Safety, mentioned within the assertion. “Relatively, it’s meant to assist our clients and the broader safety neighborhood align intelligence extra simply, reply quicker, and keep forward of menace actors.”
“Whereas advisory names might have successfully been used for correlations, the shortage of normal naming was an enormous problem,” mentioned Sunil Varkey, advisor at Beagle Safety. “Correlations have been primarily taking place by means of TTP-based correlation, IoC, or different strategies, which gave solely fragmented views, resulting in delayed responses, analyst fatigue, and inconsistencies.”
