PRO+ Premium Content/Information Security magazine

Thank you for joining!
Access your Pro+ Content below.
June 2014 Vol. 16 / No. 5

Cyberthreat intelligence is getting crowded

When it comes to dealing with zero-day threats, time is of the essence. The quicker an IT security team can respond and repel an attack, the safer the organization. Many security teams rely on pattern matches and malware databases, but these methods have become less effective as custom viruses, created almost continuously, make algorithms obsolete. Crowdsourcing threat data so that a community can act quickly and repeal potential invasions is delivering results for more enterprises. Karl Hart, IT security analyst for Ohio National Financial Services in Cincinnati, has used AlienVault's Open Threat Exchange (OTX) for several years. "We have found better than a 90% success rate with finding infected hosts when we receive an alert from the platform," he said. "We know that our antivirus software doesn't catch everything, and this allows us to become more proactive and find malicious actors more readily. The chances of finding these without OTX would be close to zero." We see malware warnings a few days to a month ahead of what is ...

Features in this issue

  • Beyond the Page: Global risk assessment

    by  Kathleen Richards

    This Beyond the Page explores the latest advances in threat intelligence and related technology, including threat information sharing services, SIEM and endpoint security products.

Columns in this issue