Infosec glossary entry

IOA

IOA:
Indicator Of Attack

[…] refer to the series of behaviors that a cybercriminal exhibits prior to executing a cyberattack. The intent of cybercriminals may be evaluated during the research stage of the cyberattack kill chain — where they investigate potential entry points, and collect data about the company, users and technology systems in place.
Indicators of attack are not so much a static description of the attacker, but a dynamic profile of how an attacker interacts with your technologies and users.
https://www.splunk.com/en_us/blog/learn/ioa-indicators-of-attack.html

Related entries

Share 0
Tweet 0
Share 0

By jean-christoph

June 3, 2023

blue team, incident response, intrusion detection, threathunting
Leave a Reply

Your email address will not be published. Required fields are marked

{"email":"Email address invalid","url":"Website address invalid","required":"Required field missing"}

this might interest you as well

compliance, ethics, infosec, security awareness, security culture, security policy

Unlock Effective Cybersecurity: Simplify Policies with the Clarity of the OSI Model

ethics, Psychologie, security awareness, security culture

Leveraging Psychology in Cybersecurity: Strategies for SMEs

awareness training, ethics, phishing, phishing simulations, security awareness, security culture

Ethical considerations in phishing tests: to inform employees or not?