TORONTO – The security business is full of different terms and methodologies for describing the threat model. In a presentation at the SecTor conference this week, Chris Pogue, director of Digital Forensics and Incident Responce at Trustwave, explained his firm’s simple four-step model for defining cybercrime.
“As difficult as people want to make cybercrime, there really are only really a few steps,” Pogue said. “The bad guy has to get in, the bad guy has to move around, the bad guy has to steal some stuff, and then the bad guy has to make a getaway.”
Trustwave calls this process flow “the Breach Quadrilateral.”