Kaspersky Lab Launches Threat Intelligence PortalThe security firm creates a single point of entry for its Kaspersky Threat Data Feeds, APT Intelligence Reporting, and Kaspersky Threat LookUp.
Woburn, MA – Kaspersky Lab has announced the launch of its Threat Intelligence Portal, the ultimate web service to help businesses access the most relevant threat information to aid their everyday struggles against complex cybercrime. With the portal, security operation center operators will be able to work more efficiently while facing hundreds and thousands of threat alerts.
The Threat Intelligence Portal will provide Kaspersky Lab’s Security Intelligence Services subscribers with a single point of entry to Kaspersky Threat Data Feeds, APT Intelligence Reporting and Kaspersky Threat LookUp. Companies will have immediate access to both the very latest and historical threat intelligence to help them combat cyber-attacks before they impact their organization. This will help improve incident response times and forensic capabilities by giving security teams meaningful and insightful information about threats and their make-up, in order to take the right response before systems and data are compromised.
Threat intelligence is of crucial importance to companies in their everyday struggle with complex threats. It allows businesses to keep up to date with the evolving landscape before technical threat descriptions become publicly available. This access to constantly updated information from expert sources and the very latest APT Intelligence reports means that an effective and swift response can be taken to overcome potential threats, through improved visibility of criminal and cyberespionage tactics, techniques and procedures available in human and machine readable formats such Indicators of compromise (IoC) and Yara rules.
Since 2016, Kaspersksy Lab has published more than 100 APT Intelligence reports to help companies better understand cyber risks. As well as these reports, Kaspersky Threat Lookup will also be accessible through the Threat Intelligence Portal. This powerful web service provides interactive access to five petabytes of cyber threat intelligence information, collected and categorized by Kaspersky Lab machine learning and expert systems over more than 10 years. This provides security operation center teams the ammunition they need to historically and geographically drill down adversaries activities and malicious behavior across the internet.
Also available on the Threat Intelligence Portal are Kaspersky Threat Data Feeds. These continuously updated feeds – including the IP Reputation, the Threat Hash, and Threat URL feeds – provide security teams with access to up to date information about current risks, and the implications associated with cyber threats. With this insight and continually updated indicators of compromise, security teams will have a greater understanding of the intent and capabilities of threats in order to bolster their network defense solutions - including SIEMs, firewalls and DNS solutions – to ensure a robust and effective response. Moreover, the Threat Intelligence Portal has a tailored interface and rich API for external SIEMs integration, to ensure the most efficient incident investigation and cyber threat hunting.
To celebrate the launch of the Threat Intelligence Portal, customers subscribing to APT Intelligence Reports, Kaspersky Threat Lookup or Kaspersky Threat Data Feeds, will receive a bonus pilot subscription to other services available on the Threat Intelligence Portal. In addition, in Q4 of 2017, Botnet Tracking and Phishing Tracking services will also be available via the portal.
"At Kaspersky Lab we believe passionately in the importance of threat intelligence as a means for safeguarding the business community against emerging cyber threats," said Veniamin Levtsov, vice president, enterprise business at Kaspersky Lab. "The more insight and context around new and emerging threats that we can share with security teams, the more prepared and aware our customers will become – in order to effectively defend themselves against all known threats. We are pleased to announce the launch of the Threat Intelligence Portal as a convenient, integrated tool that companies can use to ensure they detect threats, before it is too late."
With businesses today increasingly being threatened by cybercrime, and with half of firms across the globe worried about becoming the victim of targeted attacks (49%), the need for cyber intelligence sharing has never been greater.