News
Webroot Introduces Expanded Threat Intelligence Solution for Splunk
June 2015 by Marc Jacob
Webroot announced the expansion of its BrightCloud® Threat Intelligence for Splunk® product family with the introduction of the Webroot® BrightCloud Threat Intelligence Add-on for Splunk. The new solution integrates the industry-leading Webroot BrightCloud IP Reputation Service into Splunk Enterprise or Splunk App for Enterprise Security, enabling enterprises to more quickly detect connections to malicious IP addresses within their IT infrastructure. With BrightCloud threat intelligence, Splunk alerts of suspicious activities as they happen and provides detailed contextual information on each malicious IP so incident response teams can quickly investigate and remediate threats before they lead to costly data theft.
According to the Webroot 2015 Threat Brief, over 85,000 IP addresses are reclassified from benign to malicious every day. This reinforces the importance of using real-time IP threat intelligence to effectively detect and alert of malicious IPs. With Webroot’s dynamic list of known malicious IP addresses, which contains approximately 12 million IPs at any given time, the BrightCloud Threat Intelligence Add-on for Splunk enables enterprises to correlate network traffic and IP reputation data in their Splunk Enterprise or Splunk App for Enterprise Security environment to identify suspicious inbound and outbound IP connections.
Webroot Presents New Service at Gartner Security and Risk Management Summit
Webroot will demonstrate BrightCloud Threat Intelligence Services and BrightCloud Threat Intelligence for Splunk at the Gartner Security & Risk Management Summit on June 8-11, 2015 in National Harbor, Maryland, booth #717. Additionally, Webroot will be hosting a number of speaking sessions at the conference, including:
• The 5 Must-Haves in a Next-Gen Endpoint Security Solution – On Tuesday, June 9 at 9:15 a.m. in room Potomac 1, Webroot chief technology officer, Hal Lonas, will host a session on preventing endpoint infections, as well as discussing detection and prevention techniques, such as the ability to predict which unknown files/URLs/IPs are truly malicious.
• Using Collective Threat Intelligence to Prevent Unknown Threats – On Wednesday, June 10 at 1:20 p.m. in Theater A, Prince George’s Hall C, David Dufour, senior director of security architecture at Webroot, will explain how to use big data analytics and deep data correlation to better identify threats and prevent future occurrences.
• Defeat Cyber Threats with Collective Threat Intelligence & Smarter Endpoint Security – Presented daily in the Chesapeake Boardrooms, Webroot chief technology officer, Hal Lonas, will discuss how organizations can implement best practices in endpoint security and threat intelligence to provide faster detection and more comprehensive protection of their organizational assets.
