September 26

Strengthening Barracuda XDR’s threat intelligence with MISP

0  comments

Threat intelligence is the fuel that drives the effectiveness of an XDR and a security operations center (SOC). Having a comprehensive collection of threat intelligence can drive down the number of false-positive alerts, enhance threat detection capabilities, and enrich SOC intelligence for customers. 

That’s why Barracuda XDR integrates Malware Information Sharing Platform (MISP) into our threat intelligence framework. This integration significantly enhances the already robust threat detection capabilities of Barracuda XDR. 

By incorporating MISP, Barracuda XDR can process millions of additional indicators of compromise (IOCs), including malicious IPs, URLs, hashes, and domains. This wealth of data greatly enriches the alerts generated by our security operations center, providing our customers with a great resource to safeguard against cyberattacks. Building upon our existing threat intelligence, crowd-sourced intelligence across all Barracuda products, and our partnership with Virus Total, MISP elevates our total threat intelligence coverage to over billions more IOCs.

Quick facts on MISP threat intelligence:

  1. Over 40 distinct feeds contribute millions of new IOCs to MISP. 
  2. Feeds are derived from sources such as cybercrime reports, honeypots, IP/domain scanners, and malware samples.  
  3. IOCs encompass URLs, domains, file hashes, and IP addresses. 
  4. Our SOC enriches MISP with custom threat intelligence gathered through daily investigations and research activities. 
  5. MISP can be extended with additional modules, allowing Barracuda XDR to add custom features and functionalities tailored to their specific needs.

The integration of MISP into Barracuda XDR threat intelligence demonstrates our ongoing commitment to delivering the highest level of protection for our customers. We are confident that this integration is part of what helps us stay at the forefront of the evolving threat landscape, equipping our customers with unparalleled security. This integration and the wealth of MISP threat data helps our 24x7x365 SOC teams mitigate risks and defend against emerging cyberthreats. This continuous vigilance ensures channel partners and their customers can trust Barracuda XDR to keep them secure in an ever-changing threat environment.


Tags


You may also like

{"email":"Email address invalid","url":"Website address invalid","required":"Required field missing"}

Get in touch

Name*
Email*
Message
0 of 350