Improve detection rate

Improve detection rate

Improve detection rate by automatically receiving intelligence on the latest cyber threats.

Reduce alert fatigue

Reduce alert fatigue

Automatically reduce alert fatigue by correlating SIEM logs with best-in-class threat data.

Accelerate time to detect

Accelerate time to detect

Reduce breach-detection time by integrating the latest threat data into your EDR platform.

Features & Benefits

Wide Array of Sources

Wide Array of Sources for Collection

The threat intelligence is collected from various sources, such as Bitdefender’s network of hundreds of million endpoints, deep web monitoring, web crawling systems, sandbox analyzer services, advanced heuristic and content analyzers, email spam traps, honeypots and monitored botnets, and industry partners.

Curated Data

Curated Data

The data is automatically curated to remove duplicate entries, categorize threat objects, reduce false positives and update reputation. Additionally, 800+ Bitdefender security researchers and engineers ensure the data is accurate and actionable. The context offered to customers include region and industry tagging, threat information such as first/last seen, threat score, threat family, etc.

Threat Intelligence

Easy-to-consume Threat Intelligence

Security professionals can integrate our threat feeds and services into any platform or infrastructure in minutes. A unique, platform-agnostic approach is compatible with any SIEM (security information and event management) or TIP (threat intelligence platform) familiar with consuming a REST API and the TAXII/STIX format. 

APT IPs

APT IPs

Collection of IPs associated with highly targeted cyber-attacks (Advanced Persistent Threats).

APT File Hashes

APT File Hashes

Collection of file hashes associated with Advanced Persistent Threats. 

APT Domains

APT Domains

Collection of domains hosting Advanced Persistent Threats.

C&C IPs

C&C IPs

Feed containing IPs associated with command-and-control servers.

Phishing Domains

Phishing Domains

Collection of domain addresses associated with phishing attacks.

Malware Domains

Malware Domains

Feed of domain addresses associated with malicious threats.

Reputation Domains

Reputation Domains

Collection of domains known to spread malware, phishing and other threats.

Reputation URLs

Reputation URLs

Feed of URLs known to spread malware, phishing and other threats.

CVE File Hashes

CVE File Hashes

Feed containing information regarding hashes associated with a CVE detection.

File Hashes Reputation

File Hashes Reputation

Collection of files known to be part of threats or attacks.

IP Reputation

IP Reputation

Collection of IPs known to contain some sort of threat, such as botnet C&Cs or DDoS attacks.

Certificate Reputation

Certificate Reputation

Known to be used in malicious activities.

URL/Domain Reputation

URL/Domain Reputation

Collection of domains known to spread malware, phishing and other threats.

Pattern
double patttern

RecordedFuture Success Story

Recorded Future
Recorded Future, the world’s largest provider of intelligence for enterprise security partnered with Bitdefender on threat intelligence sharing, enhancing both companies’ breadth and depth of threat intelligence to provide customers with increased visibility at the apex domain level (the top-level domain) and actionable insights to eliminate cyberthreats from environments.

Learn More About Bitdefender Threat Intelligence Feeds & Services:

Networks
Whitepaper

Enemy Unseen – Part I: How the Dark Web is Shaping Cybercrime

From darkweb networks to state-sponsored groups, cybercrime has long outgrown its traditional image. Now, the myth of the lone wolf who carries out complex operations alone has all but disappeared.

Read More
Read More Whitepaper

Enemy Unseen – Part II: Why Dark Web Monitoring Is Essential

Read More
Read More Whitepaper

One for All and All-in-One: Regain Control of Your Security with Bitdefender and ThreatConnect®

Read More