Premium Content

Access "Cyberthreat intelligence is getting crowded"

Published: 30 May 2014

When it comes to dealing with zero-day threats, time is of the essence. The quicker an IT security team can respond and repel an attack, the safer the organization. Many security teams rely on pattern matches and malware databases, but these methods have become less effective as custom viruses, created almost continuously, make algorithms obsolete. Crowdsourcing threat data so that a community can act quickly and repeal potential invasions is delivering results for more enterprises. Karl Hart, IT security analyst for Ohio National Financial Services in Cincinnati, has used AlienVault's Open Threat Exchange (OTX) for several years. "We have found better than a 90% success rate with finding infected hosts when we receive an alert from the platform," he said. "We know that our antivirus software doesn't catch everything, and this allows us to become more proactive and find malicious actors more readily. The chances of finding these without OTX would be close to zero." We see malware warnings a few days to a month ahead of what is being caught in the real world ... Access >>>

Access TechTarget
Premium Content for Free.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

What's Inside


More Premium Content Accessible For Free

  • Continuous monitoring program demystified

    For many security teams, "continuous monitoring" is a vague concept associated with FISMA compliance. A continuous monitoring program can be simple ...

  • Does Windows 8.1 meet the demands of the BYOD age?

    The variety and sheer number of network endpoints, users and devices in the enterprise today is driving IT's demands for enhanced security features ...

  • Application security policy after Heartbleed

    Enterprises leverage open source software for the perceived quality of the code, but the Heartbleed flaw has made many question their use of ...