Being aware of all the emerging threats and newly discovered vulnerabilities, along with updates on new and existing adversaries, is an important tool in your defense in depth strategy. Many attacks are repeated on unwitting organizations that didn’t incorporate emerging news into their approach, and were ready for last month’s attacks.
Staying current can involve extensive effort, and an organization has to develop multiple intelligence sources that are appropriate for them. US-CERT, Information Sharing and Analysis Centers, vendor feeds and forums, private industry sharing agreements are only some of the sources that need to be monitored on a 24×7 basis.
Certainly, gathering the information is critical, but taking action based on the intelligence is what will assist the organization with bolstering their defenses.