Remember the movie The Usual Suspects? The mysterious villain, Keyser Soze, was infamous for his shifting identity. No one ever knew who he really was.
That’s exactly what the world of cyber security has been dealing with. The same hacking group can appear under four or five different names, depending on which company is reporting on them. Microsoft might call them one thing, while CrowdStrike, Google, or another firm calls them something entirely different.
This constant renaming doesn’t just cause confusion, it slows down the fight against cyber crime. If experts and businesses can’t quickly connect the dots, attackers gain precious time.
A New, Unified Naming System
To solve this, Microsoft and CrowdStrike have joined forces to create a standardised naming approach for hacker groups. Instead of multiple nicknames, each cyber criminal gang will have one agreed label.
This isn’t just about tidying things up. It’s about making threat detection faster, communication clearer, and response strategies more effective.
For example, one hacking group might currently be called “Salt Typhoon” by Microsoft, “GhostEmperor” by another firm, and “OPERATOR PANDA” somewhere else. Under the new system, all these labels would point to the same official name, ensuring experts know they’re dealing with the same threat.
How the Naming Works
Microsoft’s updated system uses simple, theme-based categories:
Typhoon for Chinese state-sponsored groups
Blizzard for Russian attackers
Tempest, Storm, or Tsunami for ransomware gangs and spyware operators
This approach makes it much easier to quickly identify the type and origin of a threat.
Why This Matters to Your Business
Clearer naming might sound like a small change, but it has a big impact. When your IT team or cyber security provider knows exactly who the attacker is, they can spot trends faster and respond more effectively. That means fewer blind spots, stronger defences, and quicker action when it matters most.
Most importantly, this collaboration between major security players like Microsoft, CrowdStrike, and Google helps level the playing field for smaller businesses. Even without in-house security experts, your business benefits from a system where everyone is speaking the same language during an attack.
A Step Towards Safer Business
This won’t make breaking news headlines, but it’s one of those behind-the-scenes changes that makes cyber security more effective for everyone. By removing confusion, the industry is taking another step toward a safer, more organised digital world.
Want to make sure your business is ready for evolving cyber threats? Get in touch with our team today.
