Threat Intelligence

Definition

Threat intelligence is information about cyber threats that has been collected, processed, and analyzed to help organizations make better security decisions.

Threat intelligence is categorized into levels: strategic (trends for management), operational (attacker tactics), and tactical/technical (IOCs, hashes, IP addresses).

Sources include public (OSINT), shared through ISACs, or commercial.

Related terms

IOC (Indicator of Compromise) Threat Hunting MDR (Managed Detection & Response)
← Back to glossary