Security CERT Global
- CERTFR-2024-AVI-0353 : Multiples vulnérabilités dans le noyau Linux de Red Hat (26 avril 2024)
- CERTFR-2024-AVI-0349 : [SCADA] Vulnérabilité dans les produits Belden (26 avril 2024)
- CERTFR-2024-AVI-0350 : Multiples vulnérabilités dans les produits IBM (26 avril 2024)
- CERTFR-2024-AVI-0352 : Multiples vulnérabilités dans le noyau Linux d’Ubuntu (26 avril 2024)
- CERTFR-2024-AVI-0351 : Multiples vulnérabilités dans le noyau Linux de SUSE (26 avril 2024)
- NIS2 – Richtlinie: Ein zweiter Blick auf den Text
- Ny chef for DKCERT udpeget
- CERT-SE:s veckobrev v.17
- JVN: Chirp Systems製スマートフォンアプリ「Chirp Access」におけるハードコードされたパスワードの使用の脆弱性
- JVN: 複数のHoneywell製品における複数の脆弱性
- JVN: Hitachi Energy製RTU500シリーズおよびMACH SCMにおける複数の脆弱性
- ALERT Cisco Adaptive Security Appliance and Firepower Threat Defense Software Web Services: CVSS (Max): 8.6
- OpenShift Virtualization 4.14.5 Images: CVSS (Max): 7.5
- unbound: CVSS (Max): 7.5
- buildah: CVSS (Max): 8.6
- yajl: CVSS (Max): 6.5
- buildah: CVSS (Max): 8.6
- Service Telemetry Framework 1.5.4: CVSS (Max): 7.5
- FreeRDP: CVSS (Max): 7.5
- Zabbix: CVSS (Max): 5.4
- Honeywell Products: CVSS (Max): 8.1
- Hitachi Energy MACH SCM: CVSS (Max): 7.5
- nghttp2: CVSS (Max): 7.5
- UPDATE Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software: CVSS (Max): 6.0
- Hitachi Energy RTU500 series: CVSS (Max): 8.2
- MozillaThunderbird: CVSS (Max): 7.5
- Siemens RUGGEDCOM APE1808 Devices: CVSS (Max): 10.0
- buildah: CVSS (Max): 8.6
- putty: CVSS (Max): 8.1
- CryptoJS: CVSS (Max): 9.1
- SUSE Manager Client Tools: CVSS (Max): 5.4
- cockpit-wicked: CVSS (Max): 5.3
- ALERT Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software: CVSS (Max): 6.0
- UPDATE ALERT Cisco Adaptive Security Appliance and Firepower Threat Defense Software Web Services: CVSS (Max): 8.6
- tigervnc: CVSS (Max): 7.8
- Linux Kernel (Live Patch 19 for SLE 15 SP4): CVSS (Max): 7.8
- cockpit-wicked: CVSS (Max): 5.3
- Linux Kernel (Live Patch 23 for SLE 15 SP4): CVSS (Max): 7.8
- tigervnc: CVSS (Max): 7.8
- Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software: CVSS (Max): 6.0
- FreeRDP: CVSS (Max): 9.8
- tigervnc: CVSS (Max): 7.8
- SUSE Manager Client Tools and Salt: CVSS (Max): 8.5
- tigervnc: CVSS (Max): 7.8
- libreswan: CVSS (Max): 5.0
- IBM WebSphere Application Server and IBM WebSphere Application Server Liberty: CVSS (Max): 5.9
- python-idna: CVSS (Max): 6.5
- Cortex XDR: CVSS (Max): None
- nrpe: CVSS (Max): None
- tigervnc: CVSS (Max): 7.8
Threat Intelligence could turn the tide against cybercriminals
Threat Intelligence could turn the tide against cybercriminals
Now that many security tools are generating alerts about possible threats, it’s almost like a dam has broken. There is literally so much random threat data circulating that it becomes difficult, if not impossible, for any one person or even one organization to parse it all out and find the relevant nuggets that relate to their specific situation.
That is where Threat Intelligence comes into play. This is a relatively new concept that is still being defined and modified by the very companies that offer it, even as it becomes a cornerstone of many network defensive plans. We got some hands-on training and testing with threat intelligence platforms from ThreatConnect, ThreatStream, Soltra, Arbor Networks and iSIGHT.
ThreatStream OPTIC
ThreatStream OPTIC, which starts at $50,000, is a very advanced program that can make sense of a nearly unlimited number of threat streams, and then share intelligence within a select community of users.
ThreatConnect 3.0
ThreatConnect offers a free edition as well as three paid editions starting as low as $45,000. The number of features, functionality and the chosen deployment model (private cloud, public cloud, or on-premises) determine the price for each edition.
Arbor Networks Pravail Security Analytics
Pravail is likely one of the most useful threat intelligence tools for folks that want to take an active role in network defense. Any organization with good analysts who are not doing much other than reacting to threat alerts should consider Pravail. Pricing starts at $75,000.
iSIGHT Partners ThreatScape
Enterprise subscriptions are offered on a tiered basis for each of six distinct intelligence offerings branded as ThreatScape. Depending on deployment configuration, prices start at $75,000 for one ThreatScape.
Source: Anomali
Tags: Cyber Threat Intelligence,Threat Intelligence,Threat Intelligence Platforms,