https://www.eclecticiq.com/resources
https://www.eclecticiq.com/resources
Access the latest resources including White Papers, Case Studies, Product Descriptions, Analysts Reports, and more, covering the topic of Cyber Threat Intelligence. Experts share their insights for Threat Analysts, Security Analysts, Managers of Threat Intelligence / SOC / CERT, and CISOs.
Security orchestration, automation and response (SOAR) toolsets enable only organizations with the correct level of preparation in their security operations processes to increase security process efficiency.
Download Analyst Report
Indicators of Compromise (IOCs) have their place in cybersecurity, but as cyber threats evolve, they have become ineffective in threat detection. In order to detect the techniques, tactics and procedures (TTPs) of adversaries as well as to fully understand and anticipate threats, we have to go beyond the IOC with structured intelligence.
Download White Paper
This White Paper introduces STIX 2.1, compares it with the existing STIX 1.2 architecture and shows the future for STIX 2.x.
Download White Paper
How to make threat intelligence relevant to executives, business stakeholders, security operations and incident responders.
Download White Paper
This paper provides a framework to assess the maturity of threat intelligence efforts and guide future investments.
Download White Paper
Learn about the limitations of automation in the Security Operations Center. Find out why SOCs should let humans take the lead in handling intelligence. Discover how to achieve the benefits of an integrated, intelligence-led cyber defense capability powered by a Threat Intelligence Platform.
Download White Paper
This paper explains how Threat Intelligence improves Incident Response (IR) and how to introduce Threat Intelligence into your IR practice - with two use cases from Fox-IT.
Download White Paper
The cybersecurity landscape is evolving at record rates. Organizations want to arm their employees with the best Cyber Threat Intelligence (CTI) to anticipate, detect, respond and prevent attacks as quickly as possible.
Download Analyst Report
In preparation for the 2018 Olympic Winter Games travelers are reminded to be aware of cybersecurity and physical security risks. Cyber criminals may attempt to steal PII or harvest credentials for financial gain.
Download report and STIX entities
Don’t map the threat landscape by yourself. Instead, talk to the intelligence communities of countries, industries and commercial fusion centres using industry standards STIX and TAXII.
Download Point of View
Cyber threat analysts are hard to find, and are being heavily recruited by enterprises and governments. The problem is that threat intelligence has a steep learning curve, even for IT professionals in related fields. That’s why Cyber Threat Intelligence Network (CTIN) advocates a new approach to training cyber threat analysts: Use a Threat Intelligence Platform (TIP) as a hands-on instructional tool.
Download White Paper
The hacking group Threat Actor: Fancy Bears Hack Team, which is heavily linked to the Russian government, appears to be preparing to disrupt the 2018 Winter Olympics in South Korea.
Download report and STIX entities
Talos reported about Malware: Olympic Destroyer samples. Researchers noted that of the analyzedsamples, it appeared to perform only destructive functionality. From previous attacks, inclusion of destructive capabilities may add additional meaning, in terms of targeting, campaign goals, and attribution.
Download report and STIX entities
A group of actors hacked into Jenkins servers and installed a malware that mines for Monero. This operation resulted in the theft of approximately $3 million (USD).
Download report and STIX entities
Researchers identified a new ransomware, Thanatos, that still appears to contain a lot of bugs but is the first ransomware seen to ask for payment to be made in Bitcoin Cash (BCH).
Download report and STIX entities
Security researchers have identified a new ransomware, named after the horror movie "Annabelle", which showcases a number of traditional ransomware features. This report details the observations seen by EclecticIQ Fusion Center analysts.
Download report and STIX entities
Earlier this week Cloudflare and various security researchers were reporting on an obscure amplification attack vector using the memcached protocol, coming from UDP port 11211. On Wednesday. GitHub experienced a DDoS attack stemming from memcached servers.
Download report and STIX entities
A new Android malware named Malware: Android.Fakeapp extracts user credentials directly from the victim's devices, most of which have been found to be located in the Asia-Pacific region.
Download report and STIX entities
There have been numerous instances of Android Trojans being used for espionage purposes targeting users in the Middle East in recent months. The highest profile of these include; FrozenCell, GnatSpy, AnubisSpy, Pallas and Tempting Cedar.
Download report and STIX entities
Malware: LokiBot malware is actively being distributed via a spam email campaign in the UK.
Download report and STIX entities
In the same week as spotting fresh Intrusion Set: Greenbug activity, EclecticIQ analysts have observed a number of malware samples in the wild from fellow Iranian espionage group Intrusion Set: APT33.
Download report and STIX entities
The mid-June Singapore summit between the U.S.and North Korean officials have led analysts to speculate on whether or not we are likely to see a continuation or a pause in North Korean cyber actions, and whether or not that would be damaging to the recent diplomacy that came out of the summit.
Download report and STIX entities
On 28th February the German Interior Ministry confirmed that it identified an attack against its servers in December 2017. In this report EclecticIQ Fusion Center analysts will summarize what is known to date and will provide a set of hypotheses about the infection vector.
Download report and STIX entities
In preparation for the 2018 World Cup hosted in Russia from June 14 - July 15, EclecticIQ Fusion Center analysts identified several categories of potential threats and activities that could impact the threat landscape leading up to and during the World Cup.
Download report and STIX entities
Unit 42 researchers discovered a new currency stealer dubbed "ComboJack", which targets cryptocurrencies and online wallets.
Download report and STIX entities
Fortinet reported about a series of attacks targeted at service centers in Russia. The service centers provide maintenance and support for a variety of electronic goods.
Download report and STIX entities
A Red Team Engineer posted a new tool on GitHub, ScrapedIn, that can scrape LinkedIn profiles and put the results into an Excel Spreadsheet.
Download report and STIX entities
EclecticIQ offre sicurezza informatica basata su intelligence a imprese commerciali e organizzazioni governative. I nostri prodotti e servizi, sviluppati secondo una logica rivolta agli analisti, consentono di allineare gli sforzi incentrati sulla sicurezza informatica dei nostri clienti alle minacce reali. Il risultato è una sicurezza saldamente connessa all'intelligence, con rilevamento e prevenzione migliori, e investimenti di sicurezza remunerativi.
Download Company Description
EclecticIQ bietet staatlichen Organisationen und Handelsunternehmen Intelligence-basierte Cyber-Sicherheit. Wir entwickeln analystenorientierte Produkte und Dienstleistungen, die unseren Kunden helfen, ihre Cyberabwehr-Ressourcen gezielt auf die tatsächliche Bedrohung auszurichten - mit dem Ergebnis zuverlässiger informationsgeleiteter Sicherheit, verbesserter Bedrohungserkennung, Vorbeugung und kosteneffizienter Sicherheitsinvestition.
Download Company Description
Learn how a major bank implemented a single Threat Intelligence Platform (TIP) to support multiple lines of business across its global footprint.
Download Case Study
EclecticIQ offre aux gouvernements et entreprises la capacité d'insuffler le renseignement sur les menaces au coeur de leur pratique en Cyber Securité. Nous dévelopons des produits et services pour analystes, qui permettent à nos clients d'aligner leur stratégie avec la réalité des menaces. Le résultat rend possible une pratique en cyber sécurité informée par le renseignement, une meilleure détection et réponse aux incidents, ainsi que des investissements rentables en cyber sécurité.
Download Company Description
Learn how a major bank implemented a single Threat Intelligence Platform (TIP) to support multiple lines of business across its global footprint.
Download Case Study
EclecticIQ enables intelligence-powered cybersecurity for government organizations and commercial enterprises. We develop analyst-centric products and services that align our clients’ cybersecurity focus with their threat reality. The result is intelligence-led security, improved detection and prevention, and cost-efficient security investments.
Download Company Description
Report by Enterprise Strategy Group (ESG) Jon Oltsik, Senior Principal Analyst on operationalizing Cyber Threat Intelligence through a holistic approach [Aug-2017]
Download Analyst Report
This chart highlights the 5-steps to implement EclecticIQ Platform, the analyst-centric threat intelligence platform, in your organization.
Download chart
Consolidated threat intelligence with a user-friendly taxonomy for a highly bespoke market
Download Product Datasheet
Cutting through the noise with structured intelligence to enhance your security posture.
Download Product Datasheet
Minimizing the impact of an attack with active research, context and cross-referenced insights
Download Product Datasheet
With PhishMe Intelligence and EclecticIQ Platform, security teams have unobstructed views into credible phishing threats leading to higher confidence in the action based on the indicators.
Download Solutions Brief
Conferences like RSA, CSA, and Blackhat draw people of many capabilities under a single roof. This seems to have the interesting effect of deterring outside threats. Eclectic IQ Fusion Center analysts found scant evidence of targeted campaigns against attendees of these conferences.
Download report and STIX entities
Learn how the Italian Ministry of Interior can now show the value of Threat Intelligence by providing advanced insights and moving from reactive to proactive cyber defense. This allows them to implement appropriate and extensive courses of action.
Download Case Study
EclecticIQ analysts identified at least 25 recently registered phishing domains impersonating legitimate Ethereum or Bitcoin exchanges, cryptocurrency airdrop giveaway sites, or cryptocurrency trading sites.
Download report and STIX entities
By integrating MISP (Malware Information Sharing Platform) into EclecticIQ Platform, not only do you benefit from MISP’s strong sharing capabilities and extensive community connections, but you also leverage the analyst-centric functionality from EclecticIQ Platform.
Download Solutions Brief
With EclecticIQ Fusion Center, you can see the value of your intelligence investment and are assured of receiving an optimized, fully fused feed of the latest threat intelligence relevant to you. This makes prioritization of your downstream security processes more effective. EclecticIQ Fusion Center maximizes the business value of CTI.
Download Product Description
Prioritize your security efforts based on the adversaries most likely to affect your organization
Download Product Datasheet
Harnessing the power of threat intelligence - moving from reactive to adaptive with intelligence-led securit
Download Product Datasheet
Jumpstart a high-quality, cost-effective threat intelligence practice
Download Product Datasheet
With EclecticIQ Platform, your analysts take back control of their threat reality and drive down mean time to remediation from days to minutes.
Download Product Description
EclecticIQ Fusion Center Analysts observed an influx of uploads of an executable named "playblackdesert.exe" to Virus Total, associated with the Russian installation of a very popular South Korean Massively multiplayer online role-playing game called Black Desert Online.
Download report and STIX entities
The Midterm Elections in the US are due to take place on 6th November 2018. In light of allegations of interference in previous campaigns, this report will focus on risks and identified activity that may be occurring to influence the result of the elections.
Download report and STIX entities
The European Central Bank governing council will meet on the 26th of July to discuss European monetary policy. This report will examine some of the potential threats to the ECB.
Download report and STIX entities
Researchers at Project Insecurity identified more than 30 bugs in OpenEMR, the world’s most popular open source software for managing medical records.
Download report and STIX entities
After GDPR took effect in May 2018, the security community, analysts, and the media were all attempting to speculate about the impact that GDPR would have in the way in which breaches were reported, when they were reported, and where they were being reported most.
Download report and STIX entities
EclecticIQ analysts believe with a medium to high-level of confidence that the Ukrainian 2019 elections held the 31st of March might be influenced by Russian intent to carry out cyber operations.
Download report and STIX entities
The Linux kernel, versions 4.9+, is vulnerable to denial of service conditions with low rates of specially crafted packets. This is being tracked as SegmentSmack, the CVE is CVE-2018- 5390.
Download report and STIX entities
This paper explains how Threat Intelligence improves Incident Response (IR) and how to introduce Threat Intelligence into your IR practice - with two use cases from Fox-IT.
Download White Paper
Demonstration on how to overcome threat intelligence paralysis by using a ransomware campaign and botnet threat, by providing context through their relationships with each other and additional threats.
Watch recording
This paper provides a framework to assess the maturity of threat intelligence efforts and guide future investments.
Download White Paper
Introductory webinar to EclecticIQ Fusion Center Intelligence Essentials including a demonstration of integration with Splunk SIEM
Watch recording
Download your complimentary copy now
Download Survey Report