The collaboration validates particular connections, similar to confirming that CrowdStrike’s Vanguard Panda and Microsoft’s Volt Hurricane each characterize the identical China-nexus menace group. Equally, Secret Blizzard and Venomous Bear have been recognized as aliases for a identified Russian state-affiliated actor.
“This effort just isn’t about making a single naming customary,” Vasu Jakkal, company vp at Microsoft Safety, mentioned within the assertion. “Fairly, it’s meant to assist our prospects and the broader security neighborhood align intelligence extra simply, reply sooner, and keep forward of menace actors.”
“Whereas advisory names might have successfully been used for correlations, the shortage of normal naming was an enormous problem,” mentioned Sunil Varkey, advisor at Beagle Safety. “Correlations have been primarily taking place by TTP-based correlation, IoC, or different strategies, which gave solely fragmented views, resulting in delayed responses, analyst fatigue, and inconsistencies.”
