NSS Labs to Integrate Threat Intelligence Technologies into the Cyber Advanced Warning System

Key ecosystem integrations enhance situational awareness and quicker time-to-protect  

AUSTIN, Texas – April 21, 2015 - NSS Labs, Inc., the world’s leading information security research and advisory company, announced key ecosystem integrations today with Fortinet, Palo Alto Networks, ThreatStream, and Trend Micro that will enable users of the NSS Cyber Advanced Warning System™ (CAWS) to seek additional context on threat indicators as part of increasing the communication in the security ecosystem.

These companies, all of which have products and services that specialize in advanced threat intelligence, will be able to provide important cyber security context, including malware analysis, threat actor attribution, actor history, geo-location, applications and other associations, accessible via the Cyber Advanced Warning System. 

“The integration of the NSS Cyber Advanced Warning System with these threat intelligence offerings provides our mutual clients with a way of quickly assessing and responding to threats,” said Vikram Phatak, CEO of NSS Labs.  “Customers will be able to proactively mitigate the risk caused by exploits favored by threat actors in ongoing campaigns proven capable of bypassing a client’s defenses.”

The Cyber Advanced Warning System empowers the security professional to quickly assess the exposure and risk of critical assets along with enterprise security effectiveness in the face of a dynamic, ever changing threat environment.  These workflow integrations will enable mutual clients to forward Cyber Advanced Warning System results directly into one of the following integrated threat protection platforms for further analysis:

·       Fortinet – FortiSandbox offers inspection of all protocols and functions in one appliance, taking malware samples directly from CAWS.

·      Palo Alto Networks – WildFire gains threat intelligence from over 5,000 global enterprises, service providers, and governments who use the service worldwide. WildFire analyzes over 2.5 million samples per day, which automatically reprograms the Palo Alto Networks enterprise security platform with the latest protections to prevent advanced attacks. The addition of WildFire into the NSS Cyber Advanced Warning System will increase the total number of samples analyzed per day, increasing the potential of detecting new, previously unknown threats. 

·      ThreatStream – ThreatStream-Optic is a threat intelligence platform that manages the entire life-cycle of threat intelligence, from multi-source acquisition to actionable operations across the eco-system of existing security devices.

·      Trend Micro Deep Discovery –A family of offerings to enable organizations to detect and respond to targeted attacks and advanced threats.

In addition, full details of exploits that bypass specific network security and endpoint security products will be provided directly from enterprise customers to security vendors, providing guidance for prioritization and significantly reducing time-to-protect.

“The ability to assess, react and, ultimately, anticipate cyber threats in this new era of sophisticated targeted attacks is paramount for organizations regardless of industry,” said Kevin Simzer, Senior Vice President, Trend Micro.  “The Cyber Advanced Warning System from NSS will serve as a powerful tool to help address and mitigate threats in virtually real-time.  Trend Micro Deep Discovery will serve a key function to detect and respond breaches before damage can be inflicted, and we are thrilled to have the opportunity to collaborate on this important initiative.”

The NSS Cyber Advanced Warning System was launched by NSS in March 2015.