EclecticIQ Newsletter Q1-2017
Contents1. New in EclecticIQ Platform v1.14: Autosave 2. New in EclecticIQ Platform v1.14: Four new enrichers 3. Improvements in EclecticIQ Platform v1.14 4. OpenTAXII v.0.1.8 released 5. Featured Resource: Accelerate Incident Response with Threat Intelligence 6. White Papers and Case Studies 7. Partner News 8. Upcoming Events 9. Our team 10. We’re hiring!
1. New in EclecticIQ Platform v1.14: Autosave
Autosave saves the day and your data
Autosave automatically saves a copy of your work in progress on the server, be it a graph view, a taxonomy entry, an entity, and so on. This allows recovery of work in case you are logged out because of a session timeout, or if connection to the host is lost unexpectedly.
2. New in EclecticIQ Platform v1.14: Four new enrichers
Get intel from the new PassiveTotal enrichers
Four new PassiveTotal enrichers are available. Polling the data generates meaningful extracts that augment entity intel value and relevance: 1. Passive DNS; 2. WHOIS records; 3. IP/Domain; and 4. Malware.
3. Improvements in EclecticIQ Platform v1.14
Highlights of the v1.14 release
Edit existing discovery rules; Build custom enricher extensions; Undo and redo actions on the graph; Create and add new Observables; Improved session management. In total: 16 new features and 34 improvements.
4. OpenTAXII v.0.1.8 released
5. Featured Resource: Accelerate Incident Response with Threat Intelligence
Incident response teams (also known as CERTs or DFIRs) are the last lines of defense. One of their primary goals is to react to attacks quickly and escalate quickly when needed. Threat Intelligence is helping Incident Response teams with a faster approach that prioritizes speed to an effective defense rather than perfect preservation of evidence.
EclecticIQ’s White Paper 'Accelerate Incident Response with Threat Intelligence' outlines the approach to adding Threat Intelligence to Incident Response, including coverage of Intelligence Requirements, Threat Intelligence Feeds, Threat Intelligence Platforms, and Process & Roles. The White paper also includes 2 cases from Fox-IT (part of the UK-based NCC Group).
6. White Papers and Case Studies
Read our latest thinking on cyber threat intelligence
7. Partner News
EclecticIQ is spreading its wings. Shalom to Israel’s Cyber Community!
EclecticIQ partners with SenseCy, an Israeli provider of Intelligence Feeds and tailored Intelligence Services.
8. Upcoming Events
Mark your calendar to meet the EclecticIQ team to get a product demo
March 14-16, 2017 • Liverpool, UK
March 17, 2017 • Phoenix, Arizona, US
April 03-04, 2017 • Singapore
April 12, 2017 • Online
April 30 - May 03, 2017 • Lake Buena Vista, Florida, USA
June 06-08, 2017 • London, United Kingdom
9. Our team
EclecticIQ is growing rapidly!
Meet one of our newest team members:
Thomas Krag, DevOps Engineer
Thomas has been in the IT industry for more than 10 years and is an experienced DevOps engineer. He is one of the core organizers of the meetup groups: devops Amsterdam and devopsdays Amsterdam. "My goal has always been to try and automate myself out of a job. At EclecticIQ it's going to take me a while because of the fast growth of our technology stack. I feel spoiled working with some of the best developers in the world which means my job is more focused on innovation than trying to implement best practices." When Thomas isn't working, or working on community driven events, he writes open source code, gives talks at conferences/meetups and plays electric bass.