Recorded Future Has Over 1 Billion Intelligence Cards in the RF Blog: By Zane Pokorny
Recorded Future’s database now includes over one billion Intelligence Cards.
But how many is a billion, really?
Well, one billion seconds is 31.7 years. That means that if you wanted to look at every Intelligence Card, even if you only glanced at each card for one second (24 hours a day), it would take you nearly 32 years to finish. That’s one of the big troubles with getting the cybersecurity information you need these days — there’s just so much of it.
A Problem of Too Much Information
Let’s take alerting as an example. Many analysts in a typical security operations center (SOC) will see upwards of hundreds of alerts every day, and each alert can take minutes — or hours, depending on how far down the rabbit hole of security blogs and forums they want to go — to research and evaluate manually. It’s no wonder why some 44% of alerts are not investigated at all, and why only around half of the remaining 56% are resolved. There’s just not enough time to look at each one.
But even if you did have the time, the most diligent research is still unlikely to be comprehensive, mainly because the threat landscape changes so rapidly and there’s so many disparate sources to mine for information. New vulnerabilities and exploits targeting them are uncovered every day, and they’re taken advantage of by threat actors that change their names and tactics almost as frequently, in some cases. Discussions happen in public security forums and blogs, but also across social media platforms and in hard-to-access spaces like marketplaces on the dark web and behind the paywalls of more technical resources.
As illustrated above, the exact thing that nobody wants to do is read a billion of anything to get the answer they’re looking for — or a million, or even a hundred, when they have to do that research dozens of times daily. What’s needed is a filter.
Intelligence Cards Are Threat Intelligence in One Place:
Recorded Future Intelligence Cards are exactly that filter. They bundle real-time threat intelligence on any security topic, like technical indicators, malware families, vulnerabilities, threat actors, or companies, into a single view. This unifies thousands of data points into a single place, dramatically increasing the speed and efficiency of threat research and analysis. ....
Intelligence Cards
Manually collecting and analyzing data from disparate sources is a major burden for security teams. Recorded Future consolidates massive amounts of real-time intelligence from the widest breadth of sources into a concise view of available threat intelligence. .... "
No comments:
Post a Comment