An extension and update to Fallacies and Faultlines
Organizations follow inaccurate definitions of threat intelligence leading to poorly conceived cyber threat intelligence programs. Vendors communicate threat intelligence definitions supporting their offerings propagating the fallacy that threat intelligence solves numerous security problems.
Cyber Threat Intelligence functions being built on a foundation that are not supported by standard intelligence tradecraft. Many programs support a fraction of the intelligence needs yet stakeholders hold unrealistic expectations based upon expenditures.
Information security capabilities marginally improve as spending skyrockets and security posture improvement is limited to after-the-fact discoveries communicated as prevention. Hunt and detect is not prevention when the hunting occurs inside your perimeter.