In the fight against cybercrime, cooperation and collaboration can be valuable tools helping businesses and organizations to stay safe from their shared threats. That’s why we are so excited to announce the integration of Sixgill Darkfeed with IBM QRadar.
This integration brings together the cyberthreat intelligence we provide with IBM’s security information and event management (SIEM) technology, offering QRadar users a streamlined way to bolster their threat intel.
QRadar is a powerful solution that identifies security threats facing organizations by analyzing real-time data across those organizations’ users, endpoints, clouds, applications, and networks.
Now that the integration is live, a new Darkfeed application for QRadar is available through the IBM Security App Exchange, a marketplace for developers to share applications based on IBM Security technologies. Harnessing QRadar’s open APIs, this app empowers organizations to accelerate threat research by identifying malicious indicators of compromise on the dark web, receiving early warning of new malware threats, and blocking potential threats within QRadar.
“Organizations without preemptive threat intelligence are flying blind. Much of the traditional threat research that organizations still rely on is a time consuming, labor-intensive process that can’t keep up with the threat landscape,” explains Ron Shamir, VP of products & technology alliances at Sixgill. “Darkfeed provides unmatched automated intelligence from the widest set of threat data available. Together with IBM’s technology, organizations are gaining industry leading intelligence to stay ahead of attacks in real-time.”
Darkfeed delivers a continuous stream of automated alerts based on an expansive collection of threat intelligence gathered from deep, dark, and closed web sources. It notifies customers whenever one of their indicators – elements including domains, URLs, hashes, and IP addresses – is mentioned on the dark web.
Due to Sixgill’s approach to gathering intelligence and our use of machine learning, Darkfeed stands out for its ability to provide relevant threat alerts before conventional cyberthreat intel solutions. As a result, the alerts it provides include unique and advanced warnings about new cyberthreats, empowering cybersecurity teams to stay ahead of these risks.