IT Security Teams & Threat Intelligence
Who or What is FortiGuard Labs?
FortiGuard Labs is the threat research team at Fortinet, delivering comprehensive analyses of current threats and vulnerabilities. It offers a broad range of security services, including real-time detection of malware, botnets, and exploits. A particular focus lies on integration into Fortinet's security products, enabling automatic updates and protection mechanisms. FortiGuard also provides practical tools such as the Web Filter Lookup, which checks URLs against dangerous content and block lists.
Web Filter Lookup Checker - Checks URLs against block lists and categories
Who or What is Cisco Talos?
Cisco Talos is one of the largest commercial threat intelligence teams worldwide, continuously analysing malware, attack campaigns, and new vulnerabilities. With broad global coverage, Talos delivers real-time information on the threat landscape and provides deep insights into attack mechanisms. Its tight integration with Cisco's security portfolio makes Talos especially valuable for organisations already using Cisco products. Talos stands out with extensive threat feeds and strong community support, though it is somewhat less flexible when it comes to individual customisation.
Who or What is Check Point Threat Intelligence?
Check Point operates one of the leading platforms for threat intelligence, known for a broad range of prevention capabilities against malware, exploits, and ransomware. The team uses AI-driven analysis to detect threats early and comprehensively protect networks. Check Point is particularly strong in deep firewall integrations and a variety of real-time updates that optimise protection. Users appreciate the high level of effectiveness, though the management side comes with a steeper learning curve.
Check Point Threat Intelligence Portal
Who or What is Unit 42 by Palo Alto Networks?
Unit 42 is the threat intelligence and incident response division of Palo Alto Networks, specialising in uncovering complex cyberattacks. It publishes detailed security reports on current threats and actively supports damage containment. Close integration with Palo Alto's products enables automated defences and fast response times. Unit 42 is especially suited for organisations looking for a unified security solution across cloud, endpoint, and network.
Who or What is Sophos X-Ops?
Sophos X-Ops is a collaborative network of internal and external threat hunting specialists that rapidly identifies and analyses new attack methods. The combination of real-time data sources and AI-driven analysis enables quick responses to new campaigns and vulnerabilities. X-Ops delivers practical recommendations to minimise risk and measurably improves resilience against cyber threats. It is a particularly valuable partner for customers relying on integrated endpoint and network security.
Who or What is Kaspersky Securelist?
Securelist is the official research blog from Kaspersky, providing in-depth analyses of malware families, APT groups, and international cybercrime trends. It publishes comprehensive reports containing both technical details and contextual background on threats. Kaspersky combines machine learning with traditional analysis methods to generate precise forecasts and protection recommendations. For readers, Securelist is a reliable source of well-founded cybersecurity knowledge.
Who or What is Microsoft Defender Threat Intelligence?
Microsoft Defender Threat Intelligence provides organisations with current, globally aggregated threat data combined with AI-driven analysis. The platform is tightly integrated into Microsoft's security ecosystem, supporting a unified view of attacks across cloud and endpoints. Real-time alerts enable rapid detection of new threats and allow automated responses. For organisations running Microsoft technologies, Defender Threat Intelligence is a natural complement to their security measures.
Who or What is CrowdStrike Falcon OverWatch?
Falcon OverWatch is a specialised threat hunting team at CrowdStrike, focused on detecting targeted attacks and advanced threats. Using both current and historical data, experts analyse suspicious activity that automated tools might miss. The team provides rapid actionable recommendations to prevent or contain security incidents. Falcon OverWatch is particularly relevant for organisations with high protection requirements against APTs and targeted cyberattacks.
Who or What is F5 Labs?
F5 Labs focuses on researching cybersecurity threats with an emphasis on application security and connected infrastructures. The team regularly publishes reports on current exploits, vulnerabilities, and attack vectors, particularly those affecting web and cloud applications. F5 Labs helps customers protect their networks and applications against emerging threats and provides practical security guidance. Research is closely tied to F5's product development teams.
Who or What is WatchGuard Threat Lab?
WatchGuard Threat Lab provides ongoing analyses of attack patterns and emerging exploits, with a focus on network protection and VPN security. The team produces comprehensive security reports and collaborates with product teams to develop countermeasures against current threats. Users benefit from rapid updates and a detailed view of cyber risks specifically relevant to enterprise networks. WatchGuard is a key resource for organisations running robust firewall and VPN solutions.
Who or What is SonicWall Capture Labs?
SonicWall Capture Labs is dedicated to real-time threat detection and continuous updates of protection signatures for firewalls and cloud products. It analyses cyberattacks, malware campaigns, and vulnerabilities worldwide to protect customers from emerging risks. Capture Labs combines automated analysis with expert knowledge to provide precise warnings and countermeasures. Customers appreciate the fast response capability and integration into SonicWall security products.
SonicWall Capture Security Center
Who or What is VMware Carbon Black Threat Intelligence?
The Carbon Black team at VMware provides proactive detection and response to threats on endpoints and in the cloud. The platform supports organisations with automated threat hunting and incident response capabilities. VMware combines machine learning and threat intelligence to uncover undetected attacks early. Carbon Black is especially suited to environments with high security requirements and complex IT infrastructures.
Who or What is Oracle Security Alerts?
Oracle Security Alerts inform about critical vulnerabilities in Oracle products and provide clear recommendations for timely updates and patches. The Oracle PSIRT team continuously works on identifying weaknesses and publishes security bulletins for customers. Those responsible for Oracle systems get a reliable source for protecting their environments against exploits and data loss. Regular updates support compliance with security standards.
Who or What is Symantec Threat Intelligence?
Symantec, now part of Broadcom, offers in-depth analyses of both known and unknown threats worldwide through its threat hunting team. The DeepSight platform enables proactive detection of cyberattacks and supports rapid defence against complex threats. Symantec's strengths include a large data foundation and strong integrations into enterprise networks. For organisations seeking comprehensive threat intelligence, this is a reliable choice.
Symantec Threat Intelligence Portal
Who or What is McAfee Labs?
McAfee Labs researches the latest malware trends, virus variants, and cyber threats, delivering comprehensive protection recommendations. Reports support IT teams in detecting, analysing, and defending against attacks. McAfee Labs combines heuristic methods with cloud data to provide real-time protection for endpoints and networks. The platform is particularly strong against a broad spectrum of security threats and is used by many large organisations.
Who or What is Proofpoint Research?
Proofpoint Research focuses on analysing threats in the areas of email security, phishing, and advanced threat protection. The team regularly publishes reports on current campaigns and new attack vectors. Proofpoint supports organisations with intelligent security solutions and actionable recommendations to defend against targeted attacks. Customers with high email security requirements in particular benefit from the detailed research output.