SOURCE: AnubisNetworks

AnubisNetworks

March 26, 2015 06:00 ET

On the Heels of the Successful Ramnit Botnet Takedown, AnubisNetworks Adds Powerful New Features to Cyberfeed Threat Intelligence Service

New Cyberfeed Release Delivers More Visibility Into Cyber Threat Vectors and Improved Enrichment and Correlation for More Actionable Threat Intelligence

LISBON, PORTUGAL--(Marketwired - Mar 26, 2015) - AnubisNetworks, a subsidiary of Security Ratings company BitSight Technologies, announced today significant enhancements to Cyberfeed, a subscription-based threat intelligence service that allows advanced security organizations such as SOCs, MSSPs and CERTs to obtain real-time event feeds on security threats.

Produced from a vast global and proprietary network of sensors, Cyberfeed delivers contextualized threat intelligence by correlating data from different security feeds, for example, verifying if an organization's IP reputation decrease is related to compromised systems or a persistent campaign. These feeds are enriched with data, such as geolocalization information or malware profiles, thus enabling organizations to act faster and proactively mitigate cyber risks.

This announcement comes weeks after Europol's European Cybercrime Centre (EC3) and government officials leveraged intelligence from AnubisNetworks Cyberfeed to dismantle the Ramnit botnet that infected 3.2 million computers worldwide.

Cyberfeed at-a-glance

  • Huge volumes of event streaming -- more than 25,000 events per second, leading to sub-second detection of suspicious events;
  • Real-time data on compromised networks, accounts and websites. Actionable intelligence to stop cyber-threats, e.g. detects and profiles compromised hosts and supports remediation by providing IOCs with very low false positives;
  • Flexibility that allows for the customization of data feeds, including measuring, filtering, and de-duplicating events on-the-fly, enabling analysts to focus on security events relevant to their organization;
  • Light and lean service without the need for storage;
  • Delivered via API, live dashboard or SIEM connectors.

New Enhancements to Cyberfeed

Intelligence Breadth
Unique intelligence resulting from proprietary sinkhole and honeypot infrastructures, now with even more coverage of new attack vectors and data sources that expose infected systems through DNS communication, darkweb monitoring, and website analysis. The extraction, correlation and reporting on relevant metadata about infected websites and files provides increased visibility of botnet activity.

Data Depth
Enrichment of the data sources fed into AnubisNetworks' powerful correlation engine with malware details provides an accurate view of the threat, backed by multiple intelligence vectors. Through the mapping of malware campaigns to method and propagation vectors, Cyberfeed correlates existing security feeds, such as bank trojans, with AnubisNetworks' Maltracker sandbox systems analysis, revealing information about IOCs related to the detected infection.

"Cyberfeed has been used as an integral resource in many operations, including the recent Ramnit takedown with Europol, and we are proud to announce that our product is now even stronger," said Francisco Fonseca, CEO and co-founder of AnubisNetworks. "By enhancing our features and functionality, we are certain that Cyberfeed will continue to serve as a trusted source in private and public sector initiatives. Through enhanced intelligence, we can help to combat today's most dangerous cybercrime threats."

For more information about Cyberfeed visit AnubisNetworks' website.

About AnubisNetworks, a BitSight Company

AnubisNetworks is a leading provider of real-time, actionable Threat Intelligence and Cyberfeed, their flagship solution. Cyberfeed is a subscription based service that allows customers to obtain real-time intelligence feeds about events related to security threats, as seen worldwide, with relevance to their organization. Cyberfeed was part of the ZeusGameOver and Ramnit botnet takedown operations led by the FBI and Europol respectively. In October 2014, AnubisNetworks was acquired by the Security Ratings company BitSight Technologies (www.bitsighttech.com). For more information, please visit www.anubisnetworks.com or follow @anubisnetworks on Twitter.

Contact Information

  • Contact
    Kristina Lanpheir
    Kulesa Faul for BitSight Technologies
    Email Contact
    831-251-9120