Tag Archives: threat intelligence

Business Mergers, Acquisitions & Partnerships, Tech, Technology

Silobreaker expands US reseller programme with ThreatQuotient

Strengthened collaboration to deliver unique threat insight, leveraging contextualisation and analysis of unstructured threat data at scale.

London, UK – Security and threat intelligence technology company, Silobreaker, has announced the expansion of its US reseller programme through a strengthened partnership with threat intelligence platform innovator, ThreatQuotient. This collaboration leverages Silobreaker’s vast datasets from open, deep and dark web sources to enrich the ThreatQ Platform, providing organisations with advanced capabilities to contextualise technical threat indicators and analyse unstructured threat information at scale. 

Silobreaker reseller programme expansion 

Building on the success of its existing reseller programme, Silobreaker’s expanded partnership with ThreatQuotient aims to extend its reach and enhance service offerings in the US market. This strategic move underscores Silobreaker’s commitment to working closely with resellers to deliver cutting-edge threat intelligence solutions. 

By integrating Silobreaker’s rich data sources, ThreatQuotient is strengthening the partnership between the two companies, ensuring that users benefit from a seamless and powerful threat intelligence experience. 

Utilising enrichment for enhanced threat intelligence 

The integration brings in several new features that significantly boost threat intelligence capabilities. On-demand querying allows users to easily access and query Silobreaker’s unequalled dataset of sources using intuitive search terms from the ThreatQ ​Platform. 

Silobreaker provides powerful insights on threat indicators, drawn from a customisable pool of relevant data, as well as advanced correlation of high-relevance entities from Silobreaker documents, such as malware, threat actors, attack types and more. 

Integration use cases 

The integration supports a variety of key use cases, including threat monitoring across open sources and the deep and dark web, including novel attack methods and campaigns targeting various industries. It also facilitates vulnerability tracking and offers enhanced credential monitoring and indicator enrichment for IPs, domains and subdomains.  

“Our expanded reseller programme with ThreatQuotient underscores our commitment to providing top-tier threat intelligence solutions,” said Kristofer Mansson, CEO of Silobreaker. “The integration of Silobreaker’s capabilities with the ThreatQ Platform not only enhances our collective offerings but also provides organisations with a sharper, more holistic view of potential threats. Together, we enable our partners and customers to detect, analyse, and mitigate risks before they escalate into critical incidents, ensuring they have the crucial insights needed to make proactive, informed decisions to protect their organisations.” 

John Czupak, CEO, ThreatQuotient comments: “Today’s threats are constantly evolving and if we are to remain one step ahead of adversaries we need to share, involve, collaborate, respond, learn and take swift action. Our partnership with Silobreaker enables us to deliver even deeper insights into real world threats in open and dark web sources, so customers can accelerate understanding and harden their defences. These critical insights enable customers to ensure that incident handlers, malware researchers, SOC analysts and investigation leads gain more control, and are able to take the right steps at the right time to better manage risks.” 

For more information, please visit Silobreaker and ThreatQuotient. 

About Silobreaker
Silobreaker is a leading security and threat intelligence technology company, that provides powerful insights on emerging risks and opportunities in near-real time. It automates the collection, aggregation and analysis of data from open and dark web sources in a single platform, allowing intelligence teams to produce and disseminate high-quality, actionable reports in line with priority intelligence requirements (PIRs). This enables global enterprises to make intelligence-led decisions to safeguard their business from cyber, physical and geopolitical threats, mitigate risks and maximise business value.  

Learn more at www.silobreaker.com 

About ThreatQuotientTM  

ThreatQuotient improves security operations by fusing together disparate data sources, tools and teams to accelerate threat detection, investigation and response (TDIR). ThreatQ is the first purpose-built, data-driven threat intelligence platform that helps teams prioritise, automate and collaborate on security incidents; enables more focused decision making; and maximizes limited resources by integrating existing processes and technologies into a unified workspace. The result is reduced noise, clear priority threats, and the ability to automate processes with high fidelity data. ThreatQuotient’s industry leading integration marketplace, data management, orchestration and automation capabilities support multiple use cases including threat intelligence management and sharing, incident response, threat hunting, spear phishing, alert triage and vulnerability management.  

For more information, visit www.threatquotient.com 

 

Media Contact 

Michelle Edge, Eleven Hundred Agency 

T: +44 (0) 20 7688 5202 

E: silobreaker@elevenhundredagency.com 

 

 

Mergers & Acquisitions, News

Crossword Cybersecurity Plc acquires threat intelligence company, Threat Status Limited

14 March 2022 – London, UK – Crossword Cybersecurity Plc (AIM:CCS, “Crossword”, the “Company” or the “Group”), the technology commercialisation company focused on cyber security and risk, is pleased to announce its acquisition of the whole of the share capital of Threat Status Limited (“Threat Status”), the threat intelligence company and provider of Trillion™, the cloud based software as a service (SaaS) platform for enterprise-level credential breach intelligence has now completed. Additionally, Threat Status’s more recently released product, Arc, protects the users of customer-facing applications from the threat of Account Takeovers. The acquisition of Threat Status takes the Company’s portfolio to five cyber security offerings, alongside its cyber security consulting and managed services offerings. The transaction was first mentioned on 21 December 2021 in an RNS announcement.

Threat Status’s platform enables businesses and managed service providers to monitor data that has been stolen and shared on the dark web and criminal forums which could harm the security of their business or that of their customers. Threat Status has developed its subscription-based, enterprise-class services to be turnkey, highly scalable, very secure and ready to go. The platform is quick for onboarding new clients, with no complex integrations needed, allowing rapid delivery of customer value.

Crossword Cybersecurity has agreed to pay a total consideration of £1.529m for Threat Status. This price represents an annual recurring revenue multiple of 5.25. The payments are structured as follows;

  • An initial cash payment of £500,210;
  • On the first anniversary of the transaction, a cash payment of £281,758 and £171,942 in Company stock;
  • On the second anniversary of the transaction, a cash payment of £125,000 and £450,000 in Company stock; and
  • All shares will be issued at a price based on the average mid-market price for the three months prior to the date of issue.

Threat Status was founded in 2017 by Jon Inns, who is the CEO of the business. He was joined by Ian Nice, CTO, and was supported by a third-party fund. Jon, Ian and their team of developers and apprentices will join Crossword to drive the continued commercialisation and development of Threat Status products. For the 12 months ended 31 March 2021, Threat Status made a loss of £54,864 and had net assets of £75,586 at that date. Threat Status is reaching breakeven, with 90% recurring revenue. Cross sell opportunities are being explored with the acquisition, alongside operating synergies.

Tom Ilube, CEO of Crossword Cybersecurity plc, commented: “Crossword is pleased to incorporate Trillion and Arc into its product suite, completing our aim of having five products in the market by the end of 2022 and adding over twenty new recurring revenue clients. We welcome Jon, Ian and their team to Crossword and are excited about the opportunities Threat Status brings to Crossword and our clients, as we continue in our mission to reduce the cyber risks for our clients by providing a portfolio of innovative products and services. This is our third acquisition in less than a year and shows the extent of our ambition to provide a portfolio of subscription-based, enterprise-class products and services.”

 

Jon Inns, CEO of Threat Status Limited, commented: “Threat Status has developed one of the strongest and most advanced credential leak monitoring services in the market and we’re looking forward to leveraging the opportunities and synergies this acquisition by Crossword represents. With Crossword’s experienced sales team and growing client base, and our proven and trusted technology, we expect market penetration to accelerate, increasing revenue and client protection.”

News

RiskIQ announces platform that delivers tailored security intelligence by lighting up internet relationships

RiskIQ, a leader in internet security intelligence, announced the launch of its RiskIQ Illuminate Internet Intelligence Platform, the only security intelligence solution that provides a tailored view of the global internet attack surface and pinpoints security exposures most critical for an organisation, all in one place.

With the entire internet now the security perimeter, defending the extended enterprise is a global-scale challenge. Attacker tools have flooded the web, and advanced adversaries target massive vulnerabilities in ubiquitous systems used across the world. To defend their organisations, security teams need actionable security intelligence that provides a bird’s eye view of the global attack surface and shows precisely how their organisation’s unique internet relationships fit inside it.

RiskIQ Illuminate is powered by the company’s Internet Intelligence Graph, built by assembling, labelling, and storing real-world observations over more than ten years. This real-time map of the web pre-computes the deep digital relationships that make up the global attack surface. By layering investigative capabilities over the graph, the RiskIQ Illuminate Platform delivers actionable intelligence that gives CISOs visibility and control amid a chaotic and unpredictable threat landscape.

With RiskIQ Illuminate, security intelligence evolves as fast as threat actors do because it’s fortified with trillions of observations of both an organisation’s unique attack surface and threat groups and their tools and tactics. This real-time data gives security leaders, researchers, analysts, and teams on-the-ground visibility into their digital presence from every angle to understand how they’re being targeted. This context prioritises the most critical exposures, future-proofs security programmes against emerging threats, and optimises precious security resources.

“Working closely with our Global 2000 clients and over 100,000 community members, we saw an opportunity to solve one of the most difficult cybersecurity problems at internet-scale,” said RiskIQ chief product office Dean Coza. “Instead of shining a light on the problem one vulnerability or breach at a time, RiskIQ Illuminate flips the switch and brings the entire global attack surface to light, all at once.”

This real-time intelligence derived from both the enterprise attack surface and adversary infrastructure is key to prioritising, analysing, and triaging the new breed of pervasive, massive-scale threats currently wreaking havoc on the global community. RiskIQ Illuminate delivers four types of intelligence that can immediately help modern security operations fight back:

Attack surface intelligence: RiskIQ Illuminate connects digital relationships that show who is attacking you, your assets at risk, and your most critical exposures across your digital ecosystem.

Security operations intelligence: reputation scoring and one-click lookups across the open internet and deep and dark web remove the guesswork from threat intelligence. Security teams can increase value across their ecosystem of people, processes, and technology via flexible APIs, apps, and integrations with more than 100 security products and service providers.

Third-Party intelligence: RiskIQ’s view of the global attack surface—the good, bad, and everything in between—enables customers to identify risks within other digital footprints, including organisations and institutions, partners, peers, vendors, and more. Continuous discovery allows dynamic risk and reputation scoring for the most actionable intelligence across the digital supply chain.

Cyber threat intelligence: RiskIQ’s global view of adversary infrastructure exceeds what is currently possible with traditional threat intelligence approaches, presenting new ways to detect, hunt, and respond to advanced adversaries—including top APT actors and widely used tools leveraged by all adversaries. RiskIQ Iluminate cyber threat intelligence enables automated response, deep investigations, and board and CISO-level context.

Illuminating internet relationships

RiskIQ Illuminate is where cyber threats and critical asset intelligence converge to connect digital relationships for customers’ internet ecosystems. Mapping these relationships was recently highlighted as a core strength of RiskIQ’s technology by Forrester. In March, the research firm named RiskIQ a strong performer in The Forrester Wave: External Threat Intelligence Services, Q1 2021.

The Forrester report cited RiskIQ Illuminate’s ability to uncover global infrastructure and notes, “[RiskIQ] excels in uncovering infrastructure masquerading as a brand and, via its managed service, has a robust takedown service, relieving clients of adding headcount.” The report also states, “RiskIQ offers extensive tracking of both threat and friendly infrastructure.”

The launch of RiskIQ Illuminate is the latest in a rollout of new intelligence capabilities from RiskIQ. The company recently introduced a powerful Threat Intelligence Portal featuring daily attack surface threat intelligence on global, industry, and local threats. These insights help analysts detect and investigate suspicious and malicious indicators affecting their organisation with recommended actions. RiskIQ has curated threat intelligence from open and closed sources, including actual real-time attacks observed in the RiskIQ Global Collection Network, which spans over 2,500 observation points for attacks globally.

RiskIQ Illuminate also builds on the momentum generated by RiskIQ’s PassiveTotal platform, which saw users increase by 37,299, or 40 percent, in 2020. This hypergrowth was fueled by new integrations and significant improvements to RiskIQ’s one-of-a-kind data sets. RiskIQ’s community of users now stands at over 100,000, each of which contributes intelligence that adds to the company’s community defense model.

“As you use Illuminate and claim your attack surface, you are making the internet safer for all by tracking down adversaries and removing footholds attackers can use against you, your partners, and your customers,” said RiskIQ CEO Lou Manousos. “We are very excited to be opening up our platform and allowing defenders to leverage our visibility into global threats and exposures.”

“We believe this groundbreaking, innovative approach has leapfrogged several current state-of-the-art cybersecurity solutions and can fundamentally transform external attack surface management, threat intelligence, and third-party risk markets,” Coza said. “RiskIQ Illuminate leaves attackers no place to hide.”