The IT Law Wiki

Definition[]

Contextual threat intelligence (also called contextual intelligence)

including target information, adversary course of action, and detailed information about the campaign and threat actor — poses a greater risk to privacy, contractual liability, and unauthorized disclosure of classified information.[1]

Overview[]

Unlike technical threat indicators, sharing contextual information is difficult to automate and requires more human involvement. One of the benefits of contextual information is that it can help guide investment decisions and strategies by more clearly identifying the threats a company is facing; however, technical threat indicators are arguably more valuable for real-time mitigation activities against immediate threats.[2]

References[]