Parsing out threat intelligence sources with Kaspersky CyberTrace

Logo
Presented by

Ilya Markelov, CyberTrace Product Manager and Artem Karasev, Senior Product Marketing Manager

About this talk

Our webinar is dedicated to the recent release of CyberTrace, our threat intelligence fusion and analysis tool. During the event, you will learn how to: • Define key criteria when choosing threat intelligence sources • Determine if the specific feed is relevant for your organization • Overcome the challenges of integrating threat intelligence feeds with SIEM: - SIEM systems are unable to digest millions of threat indicators - Integrating threat intelligence feeds with SIEM is time-consuming and resource-hungry - Before matching observables against threat intelligence feeds, SIEM or TIP must expose the obfuscation techniques used by threats to hide malicious activities in logs - but it doesn’t usually do this, resulting in reduced feeds efficiency • Reduce false positive rates through whitelisting and filtering of the feeds • Effectively leverage threat intelligence if you don’t have SIEM • Distill and prioritize sweeping amounts of security alerts and identify alerts that should be escalated to IR teams using Kaspersky Threat Data Feeds and their context.
Related topics:

More from this channel

Upcoming talks (1)
On-demand talks (251)
Subscribers (57325)
On this channel, Kaspersky experts share their knowledge and key insights into high-fidelity threat hunting and intelligence, incident management, malware analysis, reverse engineering, security solutions, and several other vital aspects of the cyberworld. To keep you up to date, the experts also provide detailed webinars and workshops on how Kaspersky security solutions and services can halt and prevent a vast range of malicious attacks conducted by cybercriminals. Kaspersky is a global cybersecurity and digital privacy company that has been providing protection for 25 years, with over 400 million users from more than 200 countries. Kaspersky experts' mission is to help you find the perfect weapon to protect against any cyberthreat, carried out by even the most sophisticated cybercriminals. Kaspersky researchers are top-notch cybersecurity and protection technology experts, who regularly take part in leading information security events worldwide as best-in-class speakers. Kaspersky’s deep threat intelligence and security expertise is constantly being transformed into innovative security solutions and services that protect businesses, critical infrastructure, governments and consumers around the globe. Subscribe and learn more about the latest cybersecurity discoveries on the threat landscape and how to defend against them. Contact us at https://www.kaspersky.com/about/contact