The whole is more than the sum of its parts. – Aristotle
Anyone who has taken the time to look at our website, or listened to a ThreatBlockr webinar / demo, or read our content, has seen (or heard) the first couple sentences of our value proposition:
“ThreatBlockr uses best-in-class threat intelligence to secure your networks, data and users in real-time – wherever they are – on-prem, cloud, remote, or all of the above. Our platform blocks attacks from up to 150M malicious IPs and domains in real-time with no latency.”
These two sentences articulate the important and differentiated components of our platform – one of which is our threat intelligence partners and integrations. In the coming weeks, we will be highlighting our partner integrations and the best-in-class value they bring to both our platform and our customers.
How We Got Here
Cyber criminals rely on finding new vulnerabilities and attack vectors. These vulnerabilities exist in software, hardware, and in the case of social hacking and phishing, rely on a lack of user education. This leaves cybersecurity experts and IT staff with the daunting and ongoing challenge to keep up with updates to legacy network deployments, and educating users to the potential threats that exist before they can be exploited. While many cyber security products offer threat intelligence in their products, quite simply, they can not keep up. In our paper Threat Intelligence Challenges with Next-Generation Firewalls, we identify the various challenges facing traditional security tools. However, for the purposes of this blog, suffice it to say that “organizations have increasingly adopted threat intelligence as a means to identify and respond to evolving threats. However, as organizations look to operationalize threat intelligence, they find it challenging to integrate threat intelligence into their next-generation firewalls.”
…and this last sentence says it all. As threat intelligence becomes more popular, not only are there a plethora of threat intelligence sources available, but knowing which ones to use and taking the time to integrate them into traditional security controls is both time consuming and resource prohibitive for already overtaxed IT organizations. Even worse is when organizations go through this effort and find out they can’t integrate third-party threat intelligence into existing controls at any scale.
Enter ThreatBlockr. At ThreatBlockr, we believe that defending against today’s threats is a volume game that requires the use of threat intelligence from multiple sources. One vendor or threat intelligence provider’s view of the threat landscape is simply not enough. This is exactly why we built the ThreatBlockr platform to be an open platform that uses best-in-class threat intelligence from multiple sources and makes it simple for you to integrate third-party threat intelligence in real time from any source. With over 50 threat intelligence data sources, connectors, and partner integrations, the ThreatBlockr platform simplifies and solves the threat intelligence challenge by putting best-in-class threat intelligence at your fingertips and allowing you to take action with the threat intelligence you want
The ThreatBlockr platform enables you to detect and block threats using best-in-class threat intelligence in two main ways. First, as part of our subscription offerings, we provide 30 million threat indicators from multiple sources. These sources include leading commercial threat intelligence providers like Webroot, Proofpoint Emerging Threats, and Domain Tools, open source, industry (ISAC/ISAO membership required) and government. Second, using our “out of the box” partner integrations, we make it simple for you to integrate threat intelligence in real time from any source. With a few clicks you can be taking action with threat intelligence from ISAC/ISAOs and threat intelligence from other systems, including Threat Intelligence Platforms, SIEMs, SOARs, and more..
Immediate Protection from Impending Attacks
As mentioned, cyber actors have no moral compass. They attack when they see opportunity. The more vulnerable our society is, the more advantage they see in the opportunity. For example, when the pandemic hit and organizations were forced to move to a new remote work paradigm, cyber criminals were on it. They started attacking us when we were most vulnerable, launching ransomware attacks that shut down critical systems…and in one case, caused the death of a hospital patient. As well, when the Russian backed SolarWinds attack occurred, our engineers were working with and following CISA directives, releasing automated Denied Lists within hours of their release.
Needless to say, our threat intelligence and integration partners are key to the ThreatBlockr platform. Over the coming weeks, we will be highlighting these partners, showing how we work together with them, and offer tips and recommendations on ensuring you are taking full advantage of the protections our platform provides.
If you are a current customer and have any questions, feel free to reach out to our customer support team at firstname.lastname@example.org
If you’d like to get started with ThreatBlockr platform today, contact email@example.com