Dell Targeted Threat Intelligence

Dell SecureWorks announced in November 2012 the launch of a new Targeted Threat Intelligence service suite to help organizations proactively identify, understand, and block threats to infrastructures, critical data, and managers.

The package includes three offerings: Targeted Threat Surveillance, Enterprise Brand Surveillance, and Executive Threat Surveillance, which complement Dell SecureWorks' Global Threat Intelligence portfolio.

Targeted Threat Surveillance is based on the experience of the Dell SecureWorks Counter Threat Unit (CTU) research team, unique knowledge of threats in the world, and the modern Threat Intelligence analytics platform. Using network and host identifiers of the organization, such as IP addresses and domain names, the CTU team is able to proactively protect valuable proprietary, private and public information resources, identifying threats related to the organization's infrastructure. Since cybercriminals and hackers using the Advanced Persistent Threat (APT) method act covertly, the main way to detect them is to track the digital footprint they leave.

When an initial link is found between the customer's infrastructure and the digital footprint, the CTU team identifies and evaluates the associated indicators and further analyzes the links and situation to see if these indicators pose a threat. At the same time, the team takes advantage of the accumulated world-class experience, including the experience of advanced threat intelligence. As a result, customers gain effective intelligent protection. For example, the CTU research team is able to recognize the relationships between malware samples software and the organization's infrastructure and provide analytical data on the principles of malicious code, its relationship to the attacked infrastructure, attacked telemetry, and threat indicators that can be used to analyze, protect, and respond.

The goal of the CTU team's proactive analysis of organization network and host IDs is to provide high-quality, situation-specific analysis to help organizations facing today's information threats effectively meet their needs.

Dell SecureWorks' Security Risk and Consulting (SRC) team has launched new services: Enterprise Brand Surveillance and Executive Threat Surveillance. They are designed to identify targeted attacks from hacktivists, cybercriminals and disgruntled citizens who can plan attacks against organizations or their leaders. The new services offer real-time monitoring and are based on a variety of manual sources, including conversations, reports of stolen data, intellectual property, and other indicators. In addition, security consultants search the Internet for public information related to an organization that may seem quite ordinary, but can be used by hackers to hack computer networks and undermine the reputation of managers. Such information is in public files, in social networks, in responses to project applications, metadata and job announcements.

Enterprise Brand Surveillance provides real-time monitoring of information resources to detect attackers planning attacks on the organization. It helps clients prepare countermeasures quickly and effectively and protect the company's assets and reputation.

The Executive Threat Surveillance service is used to monitor and assess risks that pose a threat to managers and personnel. The service monitors, tracks and logs the facts of publication of materials about the leaders and staff of the organization, including publications on social networks.