Posts
-
Jun 2nd, 2021
Importance of Automation in Event Prioritization
Event prioritization means organizing your events and picking the most important items to address first. The reason for this is simple and hopefully obvious: you want to identify which event is more i
-
May 20th, 2021
Improve SOC Event Prioritization With Intelligence-Driven SOAR
Information overload is a common challenge facing Security Operations Centers (SOCs). Security analysts are bombarded with alerts of potential security events. Sifting through and prioritizing the mos
-
May 19th, 2021
ThreatConnect: Helping to Deliver on the Promise of XDR
Editor’s Note: In this first of two articles, ThreatConnect’s Director of Security Architecture Chris Adams breaks down the primary requirements of an XDR as defined by Gartner, and provides a
-
May 12th, 2021
Alleviate Common SOC Struggles With SOAR Power
The cyber threat landscape is changing so rapidly that it can become almost impossible for security operations center (SOC) teams to keep up. Every day, analysts make multiple decisions that have the
-
May 4th, 2021
Is XDR the Silver Bullet We Have Been Waiting For? Spoiler: “No.”
ThreatConnect recently celebrated its 10th anniversary. We started ThreatConnect because it was easy to see that there was a need to improve the state of protection, detection, response, and recovery.
-
Feb 18th, 2021
SolarWinds Hack Spurs Interest In Risk-Based Threat Hunting
The SolarWinds hack of the software supply chain, which is considered the most significant and far-reaching cyber espionage operation targeting the U.S. government to date, has elevated the government
-
Dec 21st, 2020
Why Your SOAR Needs Threat Intel Management, Not Feed Management
When it comes to using threat intelligence to aid in the investigation of alerts or phishing, it’s essential to have the right feeds (whether OSINT or paid). We often get asked, “can I just dump f
-
Dec 18th, 2020
Tracking Sunburst-Related Activity with ThreatConnect Dashboards
Recently FireEye discovered that the SolarWinds Orion IT monitoring platform was compromised earlier this year. The threat actor used SolarWinds cryptographic keys to sign multiple backdoored files po
-
Jul 30th, 2020
Prioritize and Mitigate Threats More Efficiently with ThreatConnect and DomainTools
ThreatConnect® and DomainTools®, have officially partnered to deliver the DomainTools Iris Investigate Playbook App. By combining the data enrichment and domain monitoring power of DomainTools Iris
-
May 7th, 2020
How to Improve Collaboration with Security Teams and Technology using ThreatConnect
ThreatConnect is an intelligence-led, SOAR Platform. We bring a critically important solution to market for our clients as we combine our world-class Threat Intelligence Platform with SOAR under one b
-
Apr 30th, 2020
Improving Accuracy and Efficiency in Security Operations with ThreatConnect
ThreatConnect is the central nervous system for your entire security ecosystem. Our intelligence-driven Security Orchestration Automation and Response (SOAR) Platform is a place for your security team