You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
When viewing the victimology of a threat, Continents and sectors are labelled as being directly targeted by the threat even though the data in the platform clearly state that a specific country within that region or a specific organisation belonging to the sector has been targeted.
Observe the interface calling a "Direct targeting of this region" for the Americas.
Unfold the distinct region, Northern America, and observe the interface calling a "Direct targeting of this region" but this time, also signalling a direct targeting of the USA.
Click on the link detailing one of the "Direct targeting of this region" and observe that the link has been made though inference from the targeting of the USA.
Expected Output
When the targeting of an entity is in inferred through inferences on the victim side (city part of country part of region for example) , mark it as an indirect targeting of the entity.
When the targeting is inferred through inference on the offensive side (direct targeting of a sector through an incident, part of a campaign, attributed to a threat actor for example), keep the marking as a direct targeting of the entity.
Actual Output
Inferred, indirect targetting is marked as direct targeting.
Additional information
As a side note, the region inference might not be the most productive additions when viewing the victimology of a threat. Most threat end up with a world map mostly coloured even when they have a very precise targetting. For example, it would seem counterproductive to colour the whole of America when all data point to the specific targetting of a single Caribbean country.
The text was updated successfully, but these errors were encountered:
Description
When viewing the victimology of a threat, Continents and sectors are labelled as being directly targeted by the threat even though the data in the platform clearly state that a specific country within that region or a specific organisation belonging to the sector has been targeted.
Environment
Demo platform
Reproducible Steps
Expected Output
Actual Output
Inferred, indirect targetting is marked as direct targeting.
Additional information
As a side note, the region inference might not be the most productive additions when viewing the victimology of a threat. Most threat end up with a world map mostly coloured even when they have a very precise targetting. For example, it would seem counterproductive to colour the whole of America when all data point to the specific targetting of a single Caribbean country.
The text was updated successfully, but these errors were encountered: