Symantec DeepSight Reputation DataFeeds Identify Malicious Activity Sources in Real-Time

Symantec Corp. recently announced two new DeepSight datafeeds -- Symantec DeepSight IP Reputation DataFeed and Symantec DeepSight URL Reputation DataFeed, which provide critical intelligence about known attack actors in a format that enterprises can use to automatically trigger systems for active protection or incident management.

Both new datafeeds are Web services, which provide enterprise applications with up-to-date and actionable intelligence about malicious activity on the Internet, such as malware distribution and botnet command and control. These datafeeds are derived from observed activity on the Internet over a 24-hour period, and can be automatically integrated into a wide variety of enterprise security and incident management systems to reduce exposure to emerging threats.

Cyber threats are more frequent and sophisticated than ever before, and capable of doing great damage to critical systems and information. For enterprise security teams, it is a challenge to keep pace with the changing threat landscape. Sixty-eight percent of enterprises surveyed in the upcoming 2011 Threat Management Survey identified the lack of threat intelligence as one of their top two concerns.

Derived From the Symantec Global Intelligence Network By performing deep proprietary analysis of billions of events from the Symantec Global Intelligence Network, DeepSight Reputation DataFeeds identify the 100,000 most malicious IP addresses and thousands of malicious URLs during a 24-hour period. Malicious activity is categorized by the type of behavior observed by sensors in the Global Intelligence Network. A hostility score is calculated based on the frequency of activity and a confidence rating is assigned based on the number and types of sensors detecting the activity. The XML formatted datafeeds allow enterprise security teams to easily integrate this intelligence into their security applications and tune their responses based on their organization's risk profile.

"Our new DeepSight Reputation DataFeeds are designed to deliver critical intelligence to help our customers get ahead of new threats," said Samir Kapuria, senior director, Symantec Security Intelligence Group. "Combining Symantec's real-time global security intelligence with our customer's internal visibility enables them to be more focused and prevent attacks before critical systems and information have been compromised."

Tapping Into DeepSight Intelligence Symantec DeepSight Intelligence includes DeepSight Early Warning Services, DeepSight DataFeeds as well as the direct integration of DeepSight intelligence into a range of Symantec solutions. DeepSight Early Warning Services deliver tailored information, analysis and mitigation strategies to address known and emerging threats and vulnerabilities, accessible through the DeepSight Services Portal. DeepSight DataFeeds deliver actionable intelligence in formats which are easily integrated into a wide variety of enterprise security systems.

Many Symantec solutions directly integrate DeepSight intelligence to deliver more proactive and effective security, including Symantec Managed Security Services and Symantec Protection Center. The new Symantec VIP Intelligent Authentication solution integrates the Symantec DeepSight IP Reputation DataFeed to identify high-risk login attempts from suspected malicious sources, and invokes additional out-of-band authentication methods such as an SMS text message, phone call or email to mitigate this risk.

Featured

  • Video Surveillance Trends to Watch

    With more organizations adding newer capabilities to their surveillance systems, it’s always important to remember the “basics” of system configuration and deployment, as well as the topline benefits of continually emerging technologies like AI and the cloud. Read Now

  • New Report Reveals Top Trends Transforming Access Controller Technology

    Mercury Security, a provider in access control hardware and open platform solutions, has published its Trends in Access Controllers Report, based on a survey of over 450 security professionals across North America and Europe. The findings highlight the controller’s vital role in a physical access control system (PACS), where the device not only enforces access policies but also connects with readers to verify user credentials—ranging from ID badges to biometrics and mobile identities. With 72% of respondents identifying the controller as a critical or important factor in PACS design, the report underscores how the choice of controller platform has become a strategic decision for today’s security leaders. Read Now

  • Overwhelming Majority of CISOs Anticipate Surge in Cyber Attacks Over the Next Three Years

    An overwhelming 98% of chief information security officers (CISOs) expect a surge in cyber attacks over the next three years as organizations face an increasingly complex and artificial intelligence (AI)-driven digital threat landscape. This is according to new research conducted among 300 CISOs, chief information officers (CIOs), and senior IT professionals by CSC1, the leading provider of enterprise-class domain and domain name system (DNS) security. Read Now

  • ASIS International Introduces New ANSI-Approved Investigations Standard

    • Guard Services
  • Cloud Security Alliance Brings AI-Assisted Auditing to Cloud Computing

    The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment, today introduced an innovative addition to its suite of Security, Trust, Assurance and Risk (STAR) Registry assessments with the launch of Valid-AI-ted, an AI-powered, automated validation system. The new tool provides an automated quality check of assurance information of STAR Level 1 self-assessments using state-of-the-art LLM technology. Read Now

New Products

  • AC Nio

    AC Nio

    Aiphone, a leading international manufacturer of intercom, access control, and emergency communication products, has introduced the AC Nio, its access control management software, an important addition to its new line of access control solutions.

  • Compact IP Video Intercom

    Viking’s X-205 Series of intercoms provide HD IP video and two-way voice communication - all wrapped up in an attractive compact chassis.

  • 4K Video Decoder

    3xLOGIC’s VH-DECODER-4K is perfect for use in organizations of all sizes in diverse vertical sectors such as retail, leisure and hospitality, education and commercial premises.