This post is also available in: עברית (Hebrew)
The US Homeland Security department has been increasing its fight against cyber crime. Infoblox Inc., the network control company that provides Actionable Network Intelligence, has recently announced it’s collaborating with The Department of Homeland Security’s (DHS) Automated Indicator Sharing (AIS) program to share feeds on indicators of compromise (an artifact observed on a network or in an operating system that with high confidence indicates a computer intrusion like addresses and hostnames). The partnership of the public and private sector will see both organizations benefit from shared threat intelligence.
According to sys-con.com, cyberattacks and threats keep increasing and changing while many companies’ security levels aren’t keeping pace. Over 90% of malware attacks involve a Domain Name Search (DNS) to connect back to bad actors’ command and control infrastructure. By integrating DNS data with the broader security ecosystem, the organization’s security is able to become smarter and security operations teams can better detect and prevent cyberattacks.
Infoblox ActiveTrust suite is designed to keep DNS and existing security infrastructure updated on new and evolving threats. ActiveTrust provides, among others, the following customer benefits:
Detect and protect users accessing potentially harmful domains from the customer’s network or while roaming.
Rapidly investigate threat indicators of compromise for context and prioritization.
“Cyberattacks are increasing at an alarming rate and addressing them requires cooperation across organizations. Cooperation between the public and private sectors is imperative for building a robust security ecosystem,” said Prakash Nagpal, vice president of product marketing at Infoblox. “By participating in the AIS program, a federal and private sector partnership that enables the exchange of cyber threat indicators at machine speed, Infoblox is helping organizations around the world to receive timely and vital threat intelligence. We are continuously evolving our products to provide customers with the ability to detect and remediate threats faster.”
In addition to integrating with the DHS Automated Indicator Sharing program, Infoblox will contribute data from its own original threat research to DHS’s National Cybersecurity and Communications Integration Center (NCCIC) that allows bidirectional sharing of cyber threat indicators.