ESET Threat Intelligence

Main article: Security Information and Event Management (SIEM)

2021

Integration with R-Vision Threat Intelligence Platform

Russian A system developer cyber security R-Vision and an international anti-virus company ESET have combined technologies to combat. cyber threats Company specialists integrated data management cyber intelligence platform R-Vision Threat Intelligence Platform with ESET Threat Intelligence telemetry service. Now platform users will be able to receive streams of data threats from ESET in the familiar interface without additional settings. This was announced on August 10, 2021 by R-Vision. More. here

Integration with Garda Monitor

Manufacturers of information security solutions Garda Technologies (part of ICS Holding) and ESET have joined forces to increase the speed of detection and investigation of network incidents. This was reported to Garda Technology on March 3, 2021. Now the Garda Monitor system for analyzing network traffic is integrated with the ESET Threat Intelligence (ETI) service. Read more here.

Integration with BI.Zone ThreatVision

The threat detection harmful and activity localization platform BI.Zone ThreatVision has improved its quality data by integrating Eset with international threat data streams. The combination of recognition technologies protects the business from threats that are currently relevant for each individual industry, the company said on February 25, 2021. BI.Zone More. here

2019: ESET Threat Intelligence Data Availability for Solar JSOC Center

On August 20, 2019, "," a Rostelecom-Solar national provider service and technology company, cyber security announced that anti-virus ESET it had entered into a strategic cooperation agreement with an international company. Within the framework of the technological partnership, "-Rostelecom Solar" gained access to the dynamically updated reputation base ESET Threat Intelligence, which contains hundreds of thousands of names of current at every time. These harmful domains data enhance the monitoring and response center's ability to cyber attacks Solar JSOC proactively detect customer threats information security by blocking malicious traffic and evolving attacks. phishing More. here

2017: ESET Threat Intelligence Presentation

ESET presented in October 2017 in Russia and the CIS countries an information service for corporate clients - ESET Threat Intelligence. The service provides data on targeted attacks, new malware and botnet activity, helping organizations respond to security incidents in a timely manner.

According to the IDC, the damage to the global economy from cybercrime will exceed $1 trillion by 2020. ESET offers companies a tool to prevent threats and improve the effectiveness of protection.

ESET Threat Intelligence includes the following options:

• Early notification of target attacks and virus activity: The service reports an upcoming or already running target attack targeting the company based on the criteria that the user sets.
• Tracking botnets for online blocking of IP addresses: regularly provides quantitative data on families of botnet programs whose activity is monitored by ESET analysts.
• Automatic analysis of suspicious files: users can download files or hashes for verification and receive reports.
• Data Delivery: The service is designed for integration into SIEM systems to provide an additional layer of protection. Integration will allow, in particular, to correlate logs coming into the system from different network devices with ESET Threat Intelligence data.
• Control Panel - Provides an overview of the main events.
• The available API simplifies automation.

The service is based on ESET product and technology data: over one hundred million sensors worldwide, the ESET LiveGrid cloud system, sandboxes, a botnet tracker and ESET's own DNA signature database, combined with information from external sources.

ESET Threat Intelligence is intended for information security departments of organizations, as well as security service providers or companies providing consulting services in the field of information security. The service does not require deployment in the client's network infrastructure and is fully compatible with other security features.