|
|
|
|
|
|
by cookiengineer
1283 days ago
|
|
|
Mine is when people start talking about XDR, SIEM or SOAR systems. There's so much bullshit going on in the cyber security scene, it's ridiculous. From supposed "AI driven network analysis" to "data enrichment pipelines"... everything is built as Enterprise as possible, and as useless as possible. An XDR system that costs more than 500k per month and cannot even show the geolocation of an IP it's supposed to be able to block traffic from...I mean, come on... Let alone the alert fatigue Blueteams have to deal with every day, where 99% of alerts is just noise, and the supposedly "intelligent" system doesn't even correlate the OS, let alone the programming language its services are running on. Analysts are so overworked because all the products suck and use UX from the 90s, and are not even capable of batch-closing alerts when they are identical. It's so stupidly built that I don't even know why upper management buys that crap. |
|
|