Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Network Security

IBM Launches New Threat Sharing Platform

IBM on Thursday launched a new threat intelligence sharing platform that allows enterprise security teams and researchers to collaborate on security incidents and sift through troves of cyber threat intelligence data.

IBM on Thursday launched a new threat intelligence sharing platform that allows enterprise security teams and researchers to collaborate on security incidents and sift through troves of cyber threat intelligence data.

According to the tech giant, the cloud-based IBM X-Force Exchange provides access to IBM and third-party threat data sourced from around the world, including real-time indicators of live attacks.

IBM boasts over 700 terabytes of raw aggregated data supplied by the platform, which will continue to be updated. The data also includes real-time information, IBM said.

The X-Force Exchange integrates IBM’s portfolio of threat research data and technologies including its QRadar Security Intelligence Platform, thousands of clients, and security analysts from IBM Managed Security Services.

IBM X-Force Exchange Screenshot

According to Big Blue, X-Force Exchange users can collaborate and tap into multiple data sources, including:

· One of the largest catalogs of vulnerabilities in the world

· Threat information based on monitoring of more than 15 billion monitored security events per day

· Malware threat intelligence from a network of 270 million endpoints

Advertisement. Scroll to continue reading.

· Threat information based on over 25 billion web pages and images

· Deep intelligence on more than 8 million spam and phishing attacks

· Reputation data on nearly 1 million malicious IP addresses

“The IBM X-Force Exchange platform will foster collaboration on a scale necessary to counter the rapidly rising and sophisticated threats that companies are facing from cybercriminals,” said Brendan Hannigan, General Manager, IBM Security. “We’re taking the lead by opening up our own deep and global network of cyberthreat research, customers, technologies and experts. By inviting the industry to join our efforts and share their own intelligence, we’re aiming to accelerate the formation of the networks and relationships we need to fight hackers.”

The platform also includes tools to help organize and annotate findings, and a library of APIs to facilitate programmatic queries between the platform, machines and applications; allowing businesses to operationalize threat intelligence and take action.

IBM said the platform would provide future support for STIX and TAXII, emerging standard for automated threat intelligence sharing and integration with security solutions.

Use Case

IBM provided a use case of a security researcher that may have discovered a malicious domain, and noted it as malicious within the platform. From there, a security analyst at another company could find this domain from his or her network on the exchange and consult with other analysts and experts to validate its danger, IBM explained. Taking action, the analyst could then apply blocking rules to his or her own company’s network to stop malicious traffic. 

Written By

For more than 15 years, Mike Lennon has been closely monitoring the threat landscape and analyzing trends in the National Security and enterprise cybersecurity space. In his role at SecurityWeek, he oversees the editorial direction of the publication and is the Director of several leading security industry conferences around the world.

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Identity & Access

Zero trust is not a replacement for identity and access management (IAM), but is the extension of IAM principles from people to everyone and...

Malware & Threats

The NSA and FBI warn that a Chinese state-sponsored APT called BlackTech is hacking into network edge devices and using firmware implants to silently...

Cybersecurity Funding

Network security provider Corsa Security last week announced that it has raised $10 million from Roadmap Capital. To date, the company has raised $50...

Network Security

Attack surface management is nothing short of a complete methodology for providing effective cybersecurity. It doesn’t seek to protect everything, but concentrates on areas...

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Identity & Access

Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Cyberwarfare

Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet