Microsoft Threat Intelligence Adopts Weather-Themed Taxonomy
New naming system aims to improve clarity and consistency
Microsoft Threat Intelligence has announced a shift to a new threat actor naming taxonomy aligned around the theme of weather. The new system is designed to improve clarity and consistency in threat identification and tracking.
According to Microsoft, the weather-themed taxonomy provides a more intuitive and memorable way to identify and track threat actors. The new names are based on weather phenomena, such as "Hurricane," "Thunderstorm," and "Blizzard," which are designed to evoke the characteristics and behaviors of the associated threat actors.
Previously, Microsoft used codenames for threat actors, such as "APT29" and "Fancy Bear." However, these codenames were often confusing and difficult to remember, which made it challenging for security professionals to track and share information about threat actors.
The new weather-themed taxonomy is expected to address these challenges by providing a more consistent and intuitive naming system. The new names are also intended to be more aligned with the threat actor's motivations and tactics, making it easier for security professionals to understand and respond to the threats they pose.
For example, the threat actor known as "Hurricane" is characterized by its large-scale and destructive attacks, while "Thunderstorm" is known for its quick and unpredictable attacks. "Blizzard" is used to describe threat actors that use stealthy and persistent techniques to evade detection.
The new weather-themed taxonomy is available in the Microsoft Threat Intelligence Center. Security professionals can use the taxonomy to identify and track threat actors, and to share information about their activities.
Comments