Connect with us

Hi, what are you looking for?



Threat Intelligence Sharing Valued, But Many Not Doing it: Survey

Enterprises may largely agree that threat intelligence is important, but few are doing any actual sharing themselves, according to a new survey.

Enterprises may largely agree that threat intelligence is important, but few are doing any actual sharing themselves, according to a new survey.

According to a survey by Enterprise Strategy Group (ESG), while 94 percent of the more than 300 IT professionals surveyed believe it is either highly or somewhat valuable to share threat intelligence between federal agencies and the private sector, only 37 percent actually share internally-driven threat intelligence with other companies or Information Sharing and Analysis Centers (ISACs).

“There is clearly an understood value in leveraging threat data, but organizations are finding it difficult to collect, analyze and pinpoint critical threats,” said Jon Oltsik, ESG senior principal analyst, in a statement.

Earlier this year, a separate study by the Ponemon Institute revealed a similar finding. In that survey, organizations expressed overwhelming support for threat intelligence, with 80 percent of those that had experienced a breach during the past two years stating that threat intelligence would have prevented or minimized the consequences of the attack. However while 45 percent of respondents said they are increasing the amount of intelligence data they receive, just nine percent classified the accuracy of that intelligence as “very reliable.”

“According to our research, automation is needed for organizations to wade through the mass of alerts they receive, and standards are needed for the secure sharing of threat intelligence,” Oltsik said.

One of the top challenges to using threat intelligence identified in the ESG survey is that the intel is collected and analyzed by different tools and individuals, which makes it difficult to get a comprehensive picture of internal and external threats. That was identified as a challenge by 32 percent of respondents. Twenty-eight percent said the threat intelligence they receive isn’t as timely or actionable as it needs to be. In addition, 31 percent also cited workflow process and integration problems.

Still, 72 percent said their organization plans to increase spending on their threat intelligence program in the next 12 months.

Advertisement. Scroll to continue reading.

“The idea around sharing threat intelligence among organizations is rapidly gaining traction,” said Anne Bonaparte, CEO of Vorstack, which sponsored the study, in a statement. “To achieve this, organizations need a holistic picture of internal and external threats for the enterprise , and the ability to share threat intelligence among organizations in a manner that is secure, anonymous, non-attributed and standards based.”

Written By

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.


Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.


Expert Insights

Related Content

Data Protection

The cryptopocalypse is the point at which quantum computing becomes powerful enough to use Shor’s algorithm to crack PKI encryption.


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.


Luxury retailer Neiman Marcus Group informed some customers last week that their online accounts had been breached by hackers.


As it evolves, web3 will contain and increase all the security issues of web2 – and perhaps add a few more.


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...


Satellite TV giant Dish Network confirmed that a recent outage was the result of a cyberattack and admitted that data was stolen.


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Artificial Intelligence

The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.