The global risk of cybercrime continues to grow in seriousness and complexity for businesses of all sizes. Today, 40 percent of security teams spend 51-100 staff hours per day triaging and investigating alerts, while 19 percent spend more than 100 hours, according to a recent report from the Ponemon Institute and DomainTools. Security practitioners are inundated with threat alerts, but often lack the resources to adequately investigate them.
As the cybersecurity industry becomes increasingly aware of the importance of proactively hunting threats, there is a critical need for effective and sophisticated tools that streamline the process of identifying, monitoring and mitigating potential threats, and improve the speed and accuracy of threat response.
Here’s where DomainTools comes into play. The company’s release of the DomainTools Iris App for Anomali Threatstream provides Anomali users with pivot-based context enrichment for domain names, IP addresses, hostnames and SSL hashes in the Threatstream “Explore” feature. Through this DomainTools powered API, businesses are able to have a deeper analysis of potential risk resulting in a more safeguarded organization.
“Threat intelligence has become a top priority for the majority of organizations, as highlighted by a recent Cybersecurity Insiders survey, which revealed 64 percent of respondents see it as a critical component to the effectiveness of their threat hunting tools,” says Corin Imai, senior security advisor at DomainTools. “With organizations searching for more robust tools to detect threats earlier and reduce as much risk as possible, this integration was an obvious solution to address the most pressing needs of our customers and Anomali’s user base. Together, the products demonstrate a mutual commitment to providing security teams with comprehensive and sophisticated investigative capabilities.”
“We want to make it easy and simple for organizations to have access to threat intelligence that can be used to detect, prioritize and mitigate threats. Partners who integrate their solutions into Anomali via our SDK are contributing to an ecosystem that delivers on this promise,” adds Dan Barahona, CMO, Anomali. “The pivoting features in DomainTools Iris are designed to help streamline investigations. By adding them to the Anomali Threat Platform, we’re helping cybersecurity professionals to get more out of their research and to improve defenses against future threats.”