Read insights, thought leadership, and platform updates.

A survey of 300 cybersecurity professionals who attended a live webinar on cyber risk quantification (CRQ) sponsored by Spire Solutions and ThreatConnect shows that there is truth behind the anecdotal evidence that for too many organizations the early approach to CRQ has been too manual of a process, takes too long, produces questionable results, and […]

Chief Information Security Officers (CISOs) operate in a world full of systemic risk, fueled by forces beyond their individual control. Unfortunately, despite a myriad of technological advances and the adoption of seemingly countless security products  —  CISOs have gained little in competitive advantage over their adversaries. According to a recent World Economic Forum (WEF) future […]

Below is this week’s edition of ThreatConnect’s Research Roundup: Threat Intelligence Update, a collection of recent noteworthy findings from the ThreatConnect Research Team. The items below were created or updated in the last week (March 3 – March 10). This week’s findings include intelligence related to the following threats and/or topics: Information Operations UNC1878 / […]

ThreatConnect has developed a new Playbook app for ThreatConnect and APIVoid customers. This app allows Threat Intel Analysts a powerful way to get the reputation information on Hosts, URLs, and Address IOCs. Additionally, you can retrieve a screenshot of the webpage served for a given Host or URL for use in reports, amongst other things. […]

Today’s post continues an ongoing series on Polarity Integrations. Data tells a story, Polarity helps you see it with Augmented Reality overlaying contextual information from the applications you use every day. With over 100 powerful integrations the Polarity open-source Integrations Library arms you with the right data at the right time to make informed decisions […]

When Risk Quantifier (RQ) became a part of the ThreatConnect family last year, it was clear we had big plans when it came to changing the way security works. We spoke about the deep rooted belief we have that understanding and quantifying risk is critical to building an effective security program. Organizations are seeking to […]

ThreatConnect has improved our existing integration with Digital Shadows SearchLight. With these updates, multiple types of data like social media posts, pastes, dark web pages, technical information like DNS, and more can be found via Shadow Search and brought into ThreatConnect for further analysis. These new capabilities allow you to increase accuracy and efficiency by […]

ThreatConnect is happy to announce new ThreatConnect Playbook app integrations with free tools that many security teams use as part of their routine operations. We knew that our customers needed these integrations so we didn’t hesitate to build them out. These tools, when combined with the power of ThreatConnect Playbooks and Workflows, will allow your […]

ThreatConnect and Sumo Logic have partnered to deliver a new Playbook app. With this app, SOC analysts can automate searches for events in Sumo Logic and use these searches to do things like retroactive threat hunting or enriching an investigation with important Sumo Logic data.  By automating these processes, you allow your team to work […]

There is a tendency in the cybersecurity industry to conflate tactical changes in the threat landscape with structural and strategic imperatives that are fundamentally altering the role and responsibilities of chief information security officers (CISOs). Today’s CISOs must do more than protect systems and data from the latest threats; they must become business enablers and […]

This was one of the first graphics we created for the ThreatConnect Platform, but it’s one that’s still very meaningful to our latest release. It may seem quaint, and the graphics have certainly improved over the years, but the vision remains the same: threat intelligence can guide security operations towards better decisions, and security operations […]

The SolarWinds hack of the software supply chain, which is considered the most significant and far-reaching cyber espionage operation targeting the U.S. government to date, has elevated the government’s interest in risk-based threat hunting. The Cybersecurity and Infrastructure Security Agency (CISA) last month issued a request for information on industry’s ability to support a Threat […]