Cyber threat intelligence, as a concept, is simultaneously simple and complex. Ultimately, it is information, or “intelligence”, about cyber threats. But there’s a lot of information that falls under that definition.
Cyber threat intelligence encompasses every detail about a threat, including where it originated, who coded it, who has modified it since, how it’s delivered, the kind of damage it does, and numerous other traits and signifiers. In addition to indicators of specific malware, threat intelligence also covers the tools and tactics cyber-attackers use, details on specific types of attacks, and dynamic information about potential risks and new risk sources.
The benefits of good threat intelligence are numerous. Not only does TI help detect existing, evolving, and emerging threats, it also helps predict future threat sources and future attack types, and it empowers businesses to implement strong risk management policies.
The Webroot® platform backs every security product and service we offer for home users, businesses, and network and security vendors. It comprises over 10 years’ worth of historical threat intelligence, in addition to the massive processing power required to correlate billions of URLs, IP addresses, files, applications and more to discover new threats, create highly accurate web reputation scores, and predict future threat sources.
Read about Webroot threat intelligence services here.