Read insights, thought leadership, and platform updates.

Authored By: Andrew Dillin, Threat Intelligence Lead – Cyber & Physical at NatWest Group A question posed to me following an earlier LinkedIn post of mine. Is there a good way of working out if you are being targeted more than your peers? How sustained or capable the threat is etc? Organizations will normally have […]

Authored By: Andrew Dillin, Threat Intelligence Lead – Cyber & Physical at NatWest Group As we come to the end of the year, a number of us will be working hard to report the tangible change Threat Intelligence has made to the organization over the past year. We hear a lot about KRI’s and other […]

Cyber threat intel (CTI) teams, and organizations looking to stand up a new CTI function, face a variety of challenges. Many organizations jump into CTI without enough (or any) planning, which leads to a host of issues, like knowing what type of data sources are needed, what kind of intelligence needs to be produced, how […]

The Diamond Model of Intrusion Analysis (aka the Diamond Model), written by Sergio Caltagirone, Andy Pendergast (co-founder and EVP of Product at ThreatConnect), and Christopher Betz, is a cornerstone of cyber threat intelligence tradecraft. It was released in 2013 in what I believe was one of the most constructive periods of cybersecurity when other important […]

Cyber Intel Analysis is a growing concern for organizations of all sizes. Staying ahead of evolving digital threats can seem like an impossible task. That’s where ThreatConnect’s TI Ops Platform comes in, offering a powerful solution to guide your CTI efforts through ThreatConnect Intelligence Requirements. The best part? Creating and managing your Intelligence Requirements (IRs) […]

I had the privilege of attending FAIRCON ‘23 Embrace Digital: Managing the Risk of Digital Transformation, Cloud, and AI this year, not as a speaker or a sponsor but as an attendee.  It was great being able to catch up with people and to hear how organizations are advancing their cyber risk quantification (CRQ) programs.  […]

When making cybersecurity decisions, like ‘where to apply my investments,’ CISOs, executives, and boards rely on various insights and data points. Cyber risk quantification (CRQ) allows decision-makers to make data-driven, objective, and defensible decisions and enables more effective discussions between the CISO and business leaders. If you want to make business decisions as informed as […]

We’ll be at SecTor 2023, will you? ThreatConnect is excited to once again be attending SecTor in Toronto, Canada. We are looking forward to catching up with customers and friends, talking about threat intel operations and cyber risk quantification, and hearing about some exciting topics. SecTor 2022 was awesome, and we expect 2023 to be […]

In the first blog of this series, I took a 30,000 foot view of the seven tenets of TI Ops defined in the Dawn of Threat Intelligence Operations paper. In this blog, the last in the series, I’m discussing Tenet 7 – Creates measures of effectiveness and success for produced and consumed threat intel that are […]

Today, we’re launching version 7.3 of the ThreatConnect TI Ops Platform. This marks an exciting occasion as we roll out this update, delivering substantial enhancements to our customers through a range of new capabilities and improvements. Our latest updates include our new Intelligence Requirements capability, ATT&CK Visualizer v2, the latest update to ThreatConnect’s native ATT&CK […]

In the first blog of this series, I took a 30,000 foot view of the seven tenets of TI Ops defined in the Dawn of Threat Intelligence Operations paper. In this blog, I’m diving deeper into Tenet 6 – Integrates and automates threat intel into every aspect of security and cyber risk management. Once you have […]

As the risk of cybersecurity incidents increases, the need to be more proactive and increase organizational resilience to cyber attacks is needed. The U.S. Securities and Exchange Commission (SEC) recently released guidelines that publicly traded companies must follow for proper cybersecurity risk management, strategy, governance, and incident disclosure. This blog discusses – essential aspects of […]