The purpose of this segment is to discuss a data, system and user criticality when dealing with malware. This will help provide a process or, structure if you will that will enable you to view your environment and set the tone for which systems get full attention and are priority. In addition to which, it should also be known that any conventional (commodity) malware that has either been detected or, seen before should not get a depth of analysis. Rather, review of the IOC's block new ones if they were changed and move on. If the malware is on a detection listing, there is no need to put additional efforts into attempting to write up information about the given malware and waste resources.

Register to read more …