The Invisible N | Netenrich Blog

Knowledge Now: Getting Started with Threat Intelligence

Written by John Bambenek | Tue, Jun 20, 2023 @ 02:05 PM

The internet is a goldmine — but also a jungle — of threat intelligence. You can certainly turn to it to track exploits, vulnerabilities, and attacks. But finding those that are relevant to you may require a treasure map.

One way: Hunt and peck

To get started, you could scour the news, subscribe to multiple open-source threat intelligence (OSINT) feeds, track leaks, and turn to the community, perusing online defender forums and social media feeds.

But there are several challenges with this approach. To begin, it’s time-consuming. Do you have the bandwidth to do all of the above and then, the know-how do deeper dives into fast-changing threats?

 

A better way: Get in the KNOW now

If you want to save time and effort, you could instead simply sign up for Netenrich’s Knowledge Now (KNOW), a free AI-based threat intelligence news aggregator that provides broader and deeper context of emerging threats and attacks.

In a way, KNOW is a treasure map — giving you the lay of the land (aka situational awareness) and pointing you in the right direction each morning. With it, you don’t have to wake up wondering what’s going on in the world, what the zero days are, what’s trending.

It correlates global news around a specific threat and adds diverse perspectives from different publishers — trade press, conventional news, social media, threat research firms — so you get all the cyber threat news, perspective, and intelligence you need in one place to answer pressing SecOps questions in minutes. And with some easy filtering, it can also focus in on what’s most important to your industry or unique business.

 

Spend time on outcome-driven activities

With KNOW, you’ll spend far less time searching the web and more time on outcome-driven activity, including addressing:

  1. Threat actors. Often, you have a short window of opportunity to get ahead of threats before they blow up into SOC alerts. With KNOW emails arriving early, you’ll save time searching for what’s new and can use that time to get working on the problem. For example, patching a new vulnerability. It also allows you to learn from someone else’s misfortune — because rarely has a threat or vulnerability not already affected someone else. So, you gain the time and ability to do your due diligence on threat actors and even, help you avoid pressing the panic button at the wrong time and avoid fire drills.

  2. Executives. Pre-empt your executive team and extemporaneously provide context around a news story you know they’ll be asking about, including what you and your team are doing about it. And save time not having to draft a 20-page research paper on the topic.

KNOW is a great way to start incorporating threat intelligence into your overall security approach, which should also include adopting the right architectural approach — for example, a cybersecurity mesh architecture (CSMA) — and incorporating automated moving target defense (AMTD) technologies and frameworks like MITRE ATT&CK.

If all this sounds good, why wait? Sign up today. It’s easy, fast, and again, free.