Minus using an expensive paid tool, like Recorded Future or something. What do you all recommend as the best strategy for identifying relevant threat actors for a specific industry. Such as finance, health care, government, etc.
I’ve been tasked with making an initial list for my organization and I really only have access to OSINT sources and tools.
Any help is greatly appreciated!