Personally identifiable information (PII) becomes a crucially valuable asset for businesses under GDPR.
PII needs to be protected even more effectively than before and companies can face considerable fines for non-compliance. And for those which suffer a security breach, the need to report such incidents can damage reputations.
The question is: does the heightened need to protect PII make it an even more appealing target for hackers?
Meanwhile, the stricter GDPR limitations on access to WHOIS data makes it even harder for threat intelligence analysts to obtain relevant information to continue their investigation. This means analysts must adopt a new approach to investigations.
EclecticIQ senior intelligence analyst Caitlin Huey explains how to work within the new GDPR restrictions.
We feel confident there isn’t much that we can tell you about GDPR that you haven’t heard already. However, now the dust has settled we thought it would be a good exercise to look back at the pre-GDPR days. Join us on a quick walk-through on some of our due diligence activities and compare your experience to ours.
Nope... try again. GDPR is not for the faint of heart.
Correct: data controller and data processor (see GDPR, chapter 4).
Listen to the Soap Box episode #13 on Risky Business, published weekly since 2007. This time, Patrick Gray interviews our CEO Joep Gommers to wrap his head around Threat Intelligence.
EclecticIQ Platform 2.2 is scheduled to be available at the end of June 2018. We are very excited about what’s in it so we’re giving you a sneak peek.
The release includes further improvements for managing user authentication and enhanced upgrade procedures.
With the user authentication feature, we are making it easier to tie the management more closely to the customer’s specific company policies and allows users to self-service with a password reset feature.
From release 2.2 upgrades become easier. The current restriction to install the intermediary releases has been removed, and virtual machines can be upgraded with a single command!
Why not give it a go? Just get in touch with your customer success team representative and schedule an upgrade to release 2.2.
Another big change in release 2.2 is to how our documentation is created and delivered to you. From this release, documentation will be available to the user both inside EclecticIQ Platform and via the support portal as well.
This lets you give feedback directly on the documentation, access documentation for multiple versions of the platform, and get a better reading experience inside the platform.
We have 10 new integrations planned for release this quarter. This is in addition to nine updates for existing integrations. Yes, our development team has been very busy.
The release will include SIEM integrations and feeds as well as enrichers. It’s hard to pick which of the new integrations to highlight as they all add value in their own unique way.
But we think RiskIQ is worth a special mention. RiskIQ manages digital risk for organizations and we’re extending the catalog of supported services. With the planned functionality, EclecticIQ Platform users will be able to surface typo-squatting or brand-infringing domains, as well as phishing or blacklisted content.
In addition to this integration, there is also Cisco Umbrella, NSFocus, Symantec DeepSight Intelligence Datafeeds and VirusTotal Private API, to name a few.
Check out our website for an overview of all our integrations. We update the integrations page as we add new ones to our ever-growing catalog.
In the same week as spotting fresh Intrusion Set: Greenbug activity, EclecticIQ analysts have observed a number of malware samples in the wild from fellow Iranian espionage group Intrusion Set: APT33.
Fortinet reported about a series of attacks targeted at service centers in Russia. The service centers provide maintenance and support for a variety of electronic goods.