AlienVault Rolls Out New Open Threat Exchange Reputation Monitor Alert Service
Free community-sourced service enables organizations to track & receive alerts on threats facing their network, devices & users
San Mateo, Calif. – (July 31, 2013) – AlienVault, the leading provider of Unified Security Management™ solutions and crowd-sourced threat intelligence, today announced the launch of the AlienVault Open Threat Exchange (OTX) Reputation Monitor AlertSM, a free service that enables security professionals to monitor and track their organization’s reputation. By simply registering the IP addresses and domains that they wish to monitor, users will receive immediate alert notifications of detected threats such as malware infections, malicious activity, potential breaches, compromised websites, and hosts being used in botnets.
“Cyber criminals often use compromised systems to launch attacks against different targets,” said AlienVault CTO, Roger Thornton. “With a service that harnesses crowd-sourced threat intelligence, we can detect these attacks before damage is done. Our OTX Reputation Monitor Alert leverages the broadest scope of data, sourced from the largest community of SIEM deployments, and is free to all IT and security professionals.”
With the OTX Reputation Monitor Alert service, businesses and organizations can track the public IP and domain reputation of their own assets. Once subscribed, users are alerted anytime one of their IP addresses or domains is listed in a hacker forum, a blacklist, or matches one of the IPs in AlienVault’s IP reputation database. This is often a clear indication of system compromise, so when this happens, AlienVault provides remediation recommendations that make it easy for the user to understand what action to take to address the compromise. AlienVault also monitors the user’s DNS registration and SSL certificates to make sure there aren’t any changes the user wasn’t expecting.
The OTX Reputation Monitor Alert leverages the same trusted data found inside AlienVault’s Unified Security Management platform (USM) and open source project, OSSIM™, but has been extended to monitor an organization’s public IPs.
Additionally, the new service is an extension of the company’s open and collaborative threat intelligence system launched last year, the AlienVault Open Threat Exchange™ (OTX), which is now renamed OTX Reputation Monitor™. This system, which is automatically included in AlienVault’s commercial Unified Security Management solution and OSSIM, collects and cleanses threat data from a broad variety of security devices including firewalls, proxy servers, web servers, anti-virus systems, intrusion detection and prevention systems, among others. The AlienVault Research Lab reviews and validates all threat data to ensure that only the most accurate and actionable intelligence is published.