Increase the attack surface using sensitive data
Previously, we discussed the main elements of attacks including vulnerabilities. If the vulnerabilities cannot be recovered, attackers could try to create vulnerabilities. From the users’ perspective, we need to reduce vulnerabilities as much as possible. The challenge is that there can be vulnerabilities in the system that have not yet been recovered or published. We can only remove vulnerabilities that are known. Unknown or undiscovered vulnerabilities are typically referred to as zero days.
Even though we conduct vulnerability assessments, we conduct an assessment based on known vulnerabilities. To battle against zero days, we need to reduce the attacker surface. An attacker surface is a set of entry points or boundaries in the environment that attackers can use to try to enter, create connections, and exfiltrate data from the systems, system components, or infrastructure. To increase security, we need to always try to decrease...
