Cyber Intelligence and the Imaginary Other | Jeffery Carr
While Crowdstrike is currently the most egregious offender in terms of irresponsible intelligence analysis, the entire industry needs to formally institute a process of peer review and malware sharing similar to what Brendan Dolan-Gavitt proposed in 2014. The lack of ground truth regarding threat actors combined with market incentives attached to nation state attribution claims and an industry that is reluctant to speak out against its own makes peer review an absolute necessity.