printer friendly version

SecurityHQ enhances threat and risk intelligence with Group-IB

As a global cybersecurity company, SecurityHQ relies on intelligence from multiple sources to provide its services and protection to clients. Recently, it was announced that Group-IB, a creator of cybersecurity technologies, signed a global partnership agreement with SecurityHQ.

With this partnership, SecurityHQ will use Group-IB’s threat intelligence, attack surface management, and digital risk protection to optimise its global security operation centres (SOCs), as well as fraud protection services as part of its portfolio to enhance the defences for its financial services customers.

“This collaboration is a step forward in advancing global cybersecurity efforts. By integrating our solutions in attack surface management, threat intelligence, and digital risk protection with SecurityHQ’s expertise and operational reach, we are enhancing the capabilities of security operation centres (SOCs) worldwide,” says Vladimir Goliashev, Director of MSSP and MDR of Group-IB.

What this means for SecurityHQ

Some of the greatest benefits of threat and risk intelligence, enhanced with Group-IB data, include:

1. Attack surface management: Receive actionable insights to improve security posture with continuous external attack surface management.

2. Visual graph analysis: The graph tool can visually showcase your external attack surface by detecting existing or potential threats.

3. Dark web database access: Gain access to the industry’s most comprehensive dark web database, encompassing forums, card shops, markets, and instant messaging platforms.

4. Telegram and Discord chatter review: Gain access to a database of Telegram and Discord channels, including hacking forums, marketplaces, and hacktivist groups.

5. Track activity and attribution: Stay ahead of cyberthreats with comprehensive tracking of cybercriminal and nation-state actor activities.

6. Malware and vulnerability insights: Group-IB’s continuous research into thousands of malicious files allows for extracting configuration files from live malware collected through honeypot infrastructure, incident response efforts, and botnet tracking.

7. Malware sandbox gain: Access to a malware detonation sandbox to analyse malicious code in a controlled, isolated environment, offering comprehensive detection of various malware types.

8. Compromised data detection: Discover compromised credentials, including VIP’s personal accounts, payment card information, and breach databases before they are used to launch attacks or cause financial damage. Alerts within Group-IB Threat Intelligence can be created to inform you whenever the unified risk platform discovers a compromise for your organisation.

9. Account compromise: Discover compromised accounts for domain users.

10. Open-source code repositories: Threat actors often search public repositories as part of their reconnaissance to achieve initial access. Discover sensitive information such as logins and passwords, AWS access keys, API keys, and bank card data.

11. Public leak sites: Detect data leakage on public leak sites such as Pastebin and Ghostbin. Identify leaked data such as exported tables from databases, code fragments, usernames, passwords, bank card details, Trojan configuration files, and attack outputs.

For more information, contact SecurityHQ Southern Africa, +27 11 702 8555, [email protected], www.securityhq.com

Share this article:

Further reading: