Introducing ThreatConnect 6.4 - Improving Threat Intelligence Processes and SOC Metrics
ThreatConnect Inc.®, the leader in enabling a risk led and intelligence-driven security is announcing ThreatConnect 6.4, which introduces new capabilities that allow security operations and cyber threat intelligence (CTI) analysts to get useful context faster during investigations and to better measure team efficiencies.
ThreatConnect combines its Threat Intelligence Platform (TIP) and Security Orchestration and Automation platform (SOAR), creating a continuous feedback loop that helps make Intelligence-Driven Operations a reality. This latest product release builds upon the foundation of Intelligence-Driven Operations, empowering the workflow of threat intelligence and security operations teams individually and together.
The 6.4 release helps CTI and security operations center (SOC) teams get more context quickly, enabling faster investigations for both. CTI teams are enabled to more easily build and maintain a dynamic threat library, while updated dashboards allow SOC and IR leaders to accelerate the team’s efficiency. Three new features empower these capabilities:
- Explore With CAL™ to better understand the complex relationships of threat indicators with a graph-based interface into our Collective Analytics Layer
- Browser Extension V2 to build context around threats quickly and enhance your threat library
- New Workflow Metrics to drive operational efficiencies, helping SOC teams learn how to optimize their tools, team processes, and automations
“With the release of ThreatConnect 6.4 we’re making good on our vision and promise to security operations and cyber threat intelligence teams to deliver capabilities that will allow them to make decisions faster with more relevant context,” said Andy Pendergast, co-founder and EVP of Product at ThreatConnect. “We’re enabling insights across teams to help them observe and orient to threats to their environment faster with intelligence, and then decide and act at scale with our robust orchestration and automation capabilities.”
Explore With CAL™
Threat Connect’s Collective Analytics Layer (CAL™) is an innovative architecture that distills billions of data points, offering immediate insights into the nature, prevalence, and relevance of a threat. CAL provides global context that leverages anonymously shared insights from ThreatConnect users, open-source intelligence, malware intelligence, and numerous other collections.
When conducting research and investigation into a particular threat, this new capability lets analysts pivot directly within the CAL™ dataset in an intuitive graph-based interface to understand the complex, infrastructure-based relationships and reputation that exist with a particular indicator of compromise (IOC).
The latest iteration of the ThreatConnect Browser Extension moves beyond providing information about IOCs, enabling users with the capability to scan an online resource for potential threat actor names and their tools. This provides a desirable CAL™ enabled “Rosetta Stone” to match common threat actor aliases as well as insights on the entity regardless of which name is used.
When conducting research and investigation into a particular threat, analysts now have the ability to use multiple sources of threat intelligence to identify relevant pieces of information from any web-based resource. This is a critical capability when it comes to quickly understanding the severity level of the threat and allows one to add it to their threat library for future analysis and investigation efforts.
Workflow metrics amplify the visibility of your security operations, providing important key performance indicators (KPIs) that help measure whether people, tools, and technologies are working together efficiently. 6.4 introduces enhancements to Workflow Metrics, providing deeper insights that show trends for detection and response across a period of time. SOC team leaders can also gain perspective on the distribution of team case assignments as well as how to best prioritize unassigned cases.
The addition of a dashboard visualization showing Mean Time to Detection (MTTD) and Mean Time to Respond (MTTR) over variable periods of time can help SOC leaders evaluate detection and response trends. New, simple to configure dashboard cards for active and unassigned cases lets team leads make more informed decisions when managing the workload of the team.
ThreatConnect’s risk-led, intelligence-driven approach reduces complexity, integrating processes and technologies to continually strengthen defenses, drive down risk, and revolutionize the way customers protect their organizations by turning intelligence into action.
ThreatConnect, Inc. provides cybersecurity software that reduces complexity for everyone, makes decision-making easy by turning intelligence into action, and integrates processes and technologies to continually strengthen defenses and drive down risk. Designed by analysts but built for the entire team (security leadership, risk, security operations, threat intelligence, and incident response), ThreatConnect’s decision and operational support platform is the only solution available today with cyber risk quantification, intelligence, automation, analytics, and workflows in one. To learn more about our Cyber Risk Quantification, Threat Intelligence Platform (TIP) or Security Orchestration, Automation, and Response (SOAR) solutions visit www.ThreatConnect.com.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
Phone: +1 202.973-5341
Phone: +44 207.802.2626 | Fax: +44 207.802.2627
About Business Wire
(c) 2018 Business Wire, Inc., All rights reserved.
Business Wire, a Berkshire Hathaway company, is the global leader in multiplatform press release distribution.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Xlear Files Amended Answer to the Government’s Lawsuit on COVID-19 Statements; Provides Still More Data In Support of Xlear’s Use as Additional Layer of Protection15.8.2022 19:42:00 CEST | Press release
Xlear has filed an Amended Answer in response to the U.S. Government’s lawsuit against the company. According to Nathan Jones, Xlear’s CEO, the Amended Answer serves three main purposes: First, it provides the Court with still more data that supports the statements Xlear made that nasal hygiene is an additional layer of protection in fighting COVID-19, that our public health officials are ignoring; Second, it lays out in greater detail how the U.S. Government’s lawsuit is an effort to censor science that doesn’t comport with the Government’s vaccine-myopic, failing strategy to combat the disease; Third, it documents how experts, including Dr. Fauci, are increasingly saying the nose is the critical place to fight the virus. Xlear’s Amended Answer provides two new studies that support the statements Xlear made about the use of its nasal spray as a potential additional layer of protection against COVID-19: A new in vitro study found that use of a simple saline solution stops SAR-CoV2 vira
Energy Vault and Jupiter Power Announce Agreement for Battery Energy Storage Projects in Texas and California Totaling 220 MWh15.8.2022 14:00:00 CEST | Press release
Energy Vault Holdings Inc. (NYSE: NRGV) ("Energy Vault" or the “Company”), a leader in sustainable, grid-scale energy storage solutions, and Jupiter Power (“Jupiter”), a leading battery energy storage developer and owner/operator of utility-scale battery energy storage projects in the United States, today announced the signing of two contracts whereby Energy Vault will supply equipment, engineering, procurement, construction, balance of plant services and the energy management software for two of Jupiter’s battery energy storage projects. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20220815005206/en/ The projects include a 100 MW (200 MWh) battery energy storage system near Fort Stockton, Texas, which will provide energy and ancillary services to ERCOT, and a 10 MW (20 MWh) system in Carpinteria, California, to provide grid services through participation in the CAISO Resource Adequacy program as well as energy resiliency in
euNetworks Delivers Sustainability Progress in Europe15.8.2022 09:50:00 CEST | Press release
euNetworks Group Limited (“euNetworks”), a Western European bandwidth infrastructure company, continues to make strides in its sustainability efforts in Europe, both signing up to commitments and making meaningful and sustainable progress towards those targets. euNetworks joined The Climate Pledge in February 2022, setting 1.5°C-aligned science-based targets across Scopes 1, 2 and 3 and committing to being carbon net zero by 2040. The company has embedded its commitments in its company values and these drive the teams’ behaviour and form the basis by which the business operates. euNetworks has also developed and launched its Network Construction Carbon Tool to identify carbon hotspots, assess the incremental carbon impact of new projects, and reduce emissions across its supply chain. The impact of this tool is significant, as euNetworks owns and operates networks across 53 cities in 17 countries in Europe. This press release features multimedia. View the full release here: https://www.
A New Chapter in IT Services: Lenovo PCCW Solutions Starts First Day of Operation as a New Company15.8.2022 02:59:00 CEST | Press release
Today marks the first day of operation for Lenovo PCCW Solutions Limited1, the new strategic partnership between Lenovo Group (HKSE: 992) (ADR: LNVGY) and PCCW (HKSE: 0008) set to capitalize on the estimated US$320 billion Asia IT services market. The new company provides one-stop customer solutions that integrate IT services, devices, and digital infrastructure, and empowers clients to transform their businesses and operations with technology – from managing complex integrations to enhancing competitiveness with innovative applications. Through the partnership, the company benefits from Lenovo’s global footprint in more than 180 markets, broad portfolio of end-to-end solutions, solid pedigree in innovation, and strong go-to-market and delivery capabilities. Ken Wong, Executive Vice President of Lenovo and President of Lenovo Solutions and Services Group, said, “The partnership marks an important milestone in Lenovo’s service-led transformation journey since the formation of our Soluti
Dubai Electricity and Water Authority PJSC announces AED 12.08 billion revenue and 3.30 billion net profit in the first half of 202213.8.2022 09:59:00 CEST | Press release
Dubai Electricity and Water Authority PJSC (ISIN: AED001801011) (Symbol: DEWA), the Emirate of Dubai’s exclusive electricity and water services provider, which is listed on the Dubai Financial Market (DFM), today reported its second quarter 2022 financial results, recording quarterly revenue of AED 7.01 bn and net profit of AED 2.61 bn. For the first half of 2022, DEWA’s revenue is AED 12.08 bn and net profit is AED 3.30 bn. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20220812005416/en/ Dubai Electricity and Water Authority PJSC announces AED 12.08 billion revenue and 3.30 billion net profit in the first half of 2022 (Photo: AETOSWire) DEWA’s first half revenue increase of 15% to AED 12.08 bn was mainly driven by an increase in energy and water demand in Dubai. During the first half of 2022 energy demand increased by 6.3% and water demand by 6.4% compared to the same period in 2021. Revenue of DEWA’s majority owned subsidia