Read insights, thought leadership, and platform updates.

We here at Polarity are excited to bring back our Contributor of the Quarter award for 2023 by announcing this quarter’s contributor, John Winchester of Secrutiny! John and team over at Secrutiny have been doing some fantastic things, and not just with Polarity. If you aren’t familiar with Secrutiny, they are an MSSP that believes cybersecurity doesn’t have […]

In March of 2023 Polarity officially released one of our new features – Polarity Web Search. While we are still pushing the boundaries of human driven analysis – and consolidating enterprise knowledge (stuff you know) and data (stuff you have) into one unified view by way of our Polarity Desktop Client – we sought to deliver […]

ThreatConnect’s 7.1 release delivers an even better ThreatConnect user experience. ThreatConnect 7.1 strengthens capabilities introduced in 7.0, including Enrichment and Reporting, providing more flexibility and customization while also refining the Platform for a more streamlined user experience so security teams can be more efficient and effective.   Built-in Enrichment v2 When investigating an indicator, knowledge is […]

In partnership with one of the most well-respected independent auditors, Schellman & Company, ThreatConnect has achieved SOC 2 Type 2 compliance with our Dedicated Cloud and Risk Quantifier products for the second year in a row. Over the last few years, ThreatConnect has demonstrated our commitment to protecting our customer’s data by aligning our security […]

In the first blog of this series, I took a 30,000-foot view of the 7 Tenets of TI Ops defined in the Dawn of Threat Intelligence Operations paper. In this edition, I’m going to dig into Tenet #1 – Elevates threat intelligence to a mandatory, critical security operations role – in more detail. In the […]

Data, information, and knowledge exists in too many different places to ask employees to search them all manually. New employees don’t know where data is and senior employees waste time searching systems that may not even contain the information they are looking for. Searching through all of this siloed information is not only inefficient, but […]

If you have been a FAIR practitioner for years, like me, or maybe you are just starting out, you may have noticed (or will notice) that FAIR is great for understanding your financial risk exposure, however, it has its challenges.  I’m not here to highlight everything, but the good does FAR outweigh the bad.  No […]

Many organizations struggle to demonstrate value for threat intel and their threat intelligence teams. The intel team is trying to do the right thing though. They are collecting threat intelligence, managing it into usable shape, making it available for use, and then struggling to find consumers who need, or want, to use it.  Security operations […]

Blog authored by Dave DeWalt, Founder and Managing Director, NightDragon. Read it on the Night Dragon’s website here We live in a true golden age of data and information. Organizations have more threat intelligence, whether it be cyber, physical, etc, at their fingertips than ever before, from vulnerabilities to adversary profiles and more.  Inside these […]

If you’ve seen our blog, “Luke in the Sky with Diamonds,” or have read Adam Shostack’s excellent book: “Threats: What Every Engineer Should Learn From Star Wars,” you know that Star Wars is really just a series of cybersecurity parables. In this blog, we’re going to examine how the lead-up to the Battle of Hoth […]

We are thrilled to announce our release of Polarity Web Search, a new feature that enables users to get immediate value from their integrations and annotations with more ease and speed than ever. Any Polarity user can now log in through a browser and use just one search to find relevant information across all of […]

Threat intelligence activities, especially enrichment, analysis, and action, have traditionally required a lot of manual work. Threat Intel Operations analysts are not expected to be coders, spending their time in Python to automate their activities, and it’s not usually a “one and done” activity. Changing APIs and process improvements that require scripts to be updated […]