Jump to content

FireEye Threat Intelligence Overview

Shield

Threat Intelligence is Central to an Adaptive Security Strategy

As attackers use more advanced tactics and seek to maintain persistence in an organization, security teams will struggle to understand which cyber threats pose the greatest risk. New threats appear daily and create a strain on cyber security teams who must quickly determine whether a threat is real and respond accordingly.

FireEye Threat Intelligence is the accumulation of our global threat intelligence and analysis and draws on our proprietary access to machine-based threat intelligence as well as incident response analysis to equip cyber security teams with the context required to identify threat actors and the indicators of compromise to effectively identify, block, analyze and respond to advanced cyber attacks.

FireEye Threat Intelligence Gives Context to Prioritize and Stop Threats

FireEye Threat Intelligence gives you access to intel and analysis that helps you understand cyber threats so you can identify and stop attacks and reduce the impact of compromise. Specifically, FireEye Threat Intelligence helps:

  • Automate the detection and prevention of zero day and other advanced cyber attacks with our global threat intelligence ecosystem.
  • Accelerate incident response and reduce the time to investigate and resolve security incidents.
  • Improve ROI on cyber security investments and evaluate your cyber security posture against threats to shift resources accordingly to protect against new cyber threats and resolve incidents.

Threat Intelligence Offerings

FireEye offers 3 levels of threat intelligence to suit your intelligence analysis needs:

Dynamic Threat Intelligence (DTI)

DTI is the basic cyber threat intelligence level and enables FireEye technologies to gather and share global threat intelligence. Detect and block advanced cyber attacks by anonymously exchanging data on web, email, and file-based threats across the FireEye global cloud network.

Advanced Threat Intelligence (ATI)

ATI adds additional context to the threat intelligence and analysis and alerts you with this information. It includes any known information about the threat actors and malware used. In addition, likely motives and other indicators of compromise are included so you can search for the attackers in your environment.

Advanced Threat Intelligence Plus (ATI+)

ATI+ adds comprehensive dossiers, trends, news, and analysis on advanced cyber threat groups as well as profiles of targeted industries and information about the types of data threat groups are targeting. It also includes community threat sharing, which allows organizations to share threat intelligence with trusted partners to develop personalized community cyber defenses.

FireEye Threat intelligence is a key component to allow you to move from detection to response in minutes and helps you implement a predictive posture for your cyber security efforts.

Download the FireEye Threat Intelligence data sheet and the DTI backgrounder for additional information on how FireEye transforms data into intelligence.

Threat Intelligence Offerings