Hacker groups could be planning an attack against your organization or key personnel while you read this. Perhaps, they have already infiltrated your network and are selling your sensitive data and trade secrets to highest bidder on the black market. If these things are happening, wouldn’t you want to know? In today’s world, you have to be prepared for an attack and be able to limit the damages of a successful hack!
As threats increase in volume and intensity, the web has become the new battleground where they emerge, fester, and ultimately target the organization. With that, analysts are no longer able to keep pace with the ever-growing number of threat information sources on the web containing valuable data on targets, vulnerabilities, actors, and TTPs. If collecting this threat data is hard, organizing it for intelligence analysis is even harder. As a result, organizations’ risk of hacks and breaches increases alongside the data.
wizlynx Targeted Cyber-Threat Intelligence Service is a highly sophisticated and customizable solution that will bring down the overall response time to incidents and therefore, reduce the window of opportunity for threat actors. Additionally, this will lower the cost of incident response and more importantly, identify targeted threats and potentially avoid attacks altogether.
Our solution is the only targeted threat intelligence solution that will give your organization a tactical and strategic Cyber Threat response capability.
Our Targeted Cyber-Threat Intelligence solution uses two very distinct models to collect threat intelligence on a continuous basis. wizlynx CTI uses open sources which are very diverse and substantive. Additional, our solution uses closed / proprietary sources, including a unique ability to recover data that is being sent and stored across criminal infrastructure.
- Social Media – Facebook RSS, Twitter, YouTube
- Web based communities
- User generated content – wikis, blogs & video sharing sites
- Public & Academic data
- Pastebin
- Search engines
- IRC
- Malware databases (e.g. Virus Total)
- Zeus tracker
- Feodo
- Tor networks
- Closed forums & marketplaces
- Botnets
- Criminal infrastructure hosting malicious attacks
- Malware hunting in the dark net
- Honeypots
- Automated sink holing
- CERT collaboration
- Malware sandbox combined with human analysis
- Spam mailboxes
- Detection of client side attacks
- Hacking & underground forums including zero-day exploit forums
New sources are continuously being added. The platform is not stagnant and it is constantly evolving. Both open and closed sources of intelligence will return a large volume of structured and unstructured data that needs to be ingested and analyzed. The end product for the wizlynx client will be actionable threat intelligence that is machine-readable. What does this mean in practical terms? Our threat intelligence solution will provide your organization with the volume, velocity, variety and veracity of data it will need to understand holistically the cyber threat intelligence landscape.
wizlynx Targeted Cyber-Threat Intelligence Service will give your organization the ability to stay up to date with an ever-evolving threat landscape. With wizlynx’s modular based delivery system, new modules are constantly being developed and brought online to meet new threat vectors. The platform consists of 8 unique modules covering a greater range of cyber threats than any other service currently available.
Our tactical response team is responsible for monitoring, detecting, and isolating incidents. The core functions and technologies are based on events from wizlynx Targeted Cyber-Threat Intelligence and modules enabled. Essentially the TRT is the correlation point for every event logged within the organization that is being monitored. For each of these events, the TRT must decide how they will be managed and acted upon.
As a part of event management, the TRT provides 24x7 telephone and email assistance to its customers covering some of the following areas:
- Malware outbreak
- Phishing attacks
- Data leak/loss incidents
- Customer inquiries
- Open an incident ticket for any problems noticed and reported
