Bitdefender, a leading cybersecurity company, has unveiled Bitdefender Threat Intelligence (TI), a solution designed to help businesses with their security operations. Specifically targeting security operation centers (SOCs), managed security service providers (MSSPs), and technology partners, the offering aims to integrate cyber threat intelligence and dynamic malware analysis into their operations.
The primary goal of Bitdefender TI is to provide organizations with increased visibility of the evolving global threat landscape. By doing so, it aims to improve threat detection and validation, triage alerts, enhance threat hunting, and ultimately speed up incident response. In the modern cybersecurity landscape, having access to relevant and timely threat intelligence is crucial as attackers continue to diversify and evolve their strategies.
Andrei Florescu, the Deputy General Manager and Senior Vice President of Products at Bitdefender Business Solutions Group, emphasized the importance of threat intelligence in cybersecurity. He stated, “Having access to relevant, timely, and actionable threat intelligence is mandatory in every facet of modern cybersecurity as adversaries and TTPs for evading defenses diversify and evolve.”
Bitdefender TI is powered by the Global Protective Network, which consists of millions of sensors distributed worldwide. These sensors continuously monitor IT assets and infrastructures across customer and technology partner environments, providing a comprehensive global view of the threat landscape. Bitdefender Labs, the company’s elite team of security practitioners, leverages this data to perform threat analysis, collect indicators of compromise (IOCs), and conduct deep analysis to provide extended context and help improve organizations’ security posture against attacks. Hundreds of new threats are added to the system every minute, and the platform validates billions of threat queries daily.
Bitdefender TI is delivered and managed through IntelliZone, a user-friendly cloud portal. This portal grants organizations access to Bitdefender’s global threat intelligence database and malware sandbox service. Additionally, IntelliZone enables organizations to assess and test various threat intelligence feeds and scenarios before actual deployment. This allows cybersecurity teams to evaluate how different feeds and scenarios will impact their operations and make informed decisions. The information from IntelliZone is also available via APIs and feeds, allowing for a wider range of integration scenarios.
The key features and benefits of Bitdefender Threat Intelligence include its unique global threat intelligence, which provides context-rich threat intelligence obtained from multiple sources. This helps enhance the capabilities of cybersecurity products and security teams by enabling faster detection of malware, malicious campaigns, and anomalous behavior.
Another significant advantage is its ability to speed up decision-making and accelerate incident response. By utilizing curated and highly contextual threat intelligence, organizations can validate and triage alerts more efficiently, reducing false positives. Moreover, it enables rapid incident response and improves threat hunts by profiling associated threat actors, malware families, IOCs, and tactics, techniques, and procedures (TTPs).
Bitdefender TI also offers the flexibility to integrate purpose-built feeds, allowing organizations to choose from a wide range of feeds covering operational intelligence such as advanced persistent threats (APTs), ransomware, phishing and fraud, command and control (C2) servers, and mobile threats. Additionally, reputational intelligence feeds including IP, web, file, and exploited vulnerabilities are available.
The solution is designed to be user-friendly and flexible. The Bitdefender IntelliZone portal provides organizations and security analysts with a consolidated view of the evolving threat landscape and malware sandbox analysis through an intuitive and easy-to-manage interface. Furthermore, threat intelligence is accessible through APIs, enabling automation and integration with existing security tools and processes.
Bitdefender Threat Intelligence has already garnered praise from prominent industry players. Luca Pierro, the head of cybersecurity at Ferrari, stated, “Bitdefender Threat Intelligence helps us with the difficult challenge of detecting and preventing hidden threats ‘in the wild’ to respond faster and also increases our awareness of the tactics used by attackers.”
With the constantly evolving cybersecurity landscape and the increasing sophistication of threats, having access to proactive and comprehensive threat intelligence is crucial for organizations to effectively defend against cyber attacks. Bitdefender’s new solution, with its global threat intelligence capabilities and user-friendly interface, aims to empower security teams and provide them with the necessary tools to stay one step ahead of cybercriminals.