Datasheet

Partner Data Sheet: ThreatFabric

Unweave Mobile Threats

Understand and prevent mobile malware powered attacks with Anomali and ThreatFabric

Anomali and ThreatFabric Joint Solution Features

  • Link ThreatFabric’s Mobile Threat Intelligence and your intelligence and fraud prevention teams via Anomali ThreatStream, integrating real-time mobile threat indicators with your existing security solutions and processes
  • Gain in-depth visibility on threats outside of your organization’s security perimeter with proactive setup of your defense mechanisms
  • Consolidate your threat knowledge and build your counterstrategy with contextual threat reports
  • Automate detection and enhance handling of operational intelligence by using target indicators

Immediate Time-to-Value

Silo provides a research platform for Anomali users that secures the user, device, and organization, while providing advanced OSINT tradecraft tools. Silo eliminates the need to have parallel infrastructure or security policy exceptions to enable analysts to conduct threat research.

  • Get started immediately with a real-time and continuous feed of actionable indicators
  • Prioritize detection and response using the target indicators included in both operational and strategic intelligence
  • Get global visibility on the threat landscape while being able to discern direct and active threats

Threat actors motivated by financial gain always follow the money, and have certainly followed the massive shift to mobile online banking. Mobile threats are in constant evolution and many financial institutions have already suffered from mobile-based fraud. The new tactics, techniques and procedures used by criminals have managed to bypass commonly used fraud detection mechanisms. Anomali and ThreatFabric together deliver threat intelligence that provides the imperative insights on the mobile threat landscape you need in order to prevent threat actors from being successful. ThreatFabric real-time intelligence empowers you to proactively prevent fraud, keeping risk levels to the bare minimum and preserving a positive customer experience.

Real-Time

Continuous operational intelligence, allowing you to be preventive instead of reactive.

Global Visibility

Visibility into the complete threat landscape in order to prepare yourself for what is already next door.

Expert Access

Use curated intelligence for continuous monitoring and ask our experts for help during investigations.

Remote Access Trojans

Challenge:

Consumers remain the weak link in the online payments chain. Being outside of the security perimeter, those end-users cannot be forced to adopt corporate security policies. The growing use of remote access Trojans (RAT) provides threat actors the ability to control unsuspecting users’ devices as if they had the device in their own hands, resulting in the theft of personal information and large fraud campaigns.

Solution:

Anomali automatically ingests all threat intelligence from ThreatFabric’s MTI portal. The actionable indicators make it easy and fast for your teams and existing security tools to act upon. The actionable intelligence is enriched with relevant indicators and context in order to correlate it and further enrich it with additional intelligence or investigations.

Customer Benefit:

Be informed of attack campaigns in real time with little to no integration, thanks to the structured intelligence from ThreatFabric. Receiving the operational intelligence directly into Anomali will allow your teams to make it actionable and forward the relevant indicators to your security tools without the need for any human action.

Automated Transactions and Fraud

Challenge:

Financially motivated threat actors are continuously innovating and trying out new methods to remain undetected while performing fraud. One of their current focuses and a growing trend is to script their attacks in order to automate the fraud process. By automating the abuse of stolen information, attackers can scale up their fraudulent campaigns and cause more harm on a continuous basis.

Solution:

ThreatFabric’s mobile threat intelligence includes both operational and strategic intelligence to be able to assess threat- related risk and act immediately without having to transform or enrich the data. All threats detected and tracked are enriched with specific information about techniques they use and capabilities they provide, allowing you to prioritize them according to the highest risk to your online assets.

Customer Benefit:

With the filtering features included in Anomali, your analysts will be able to classify and prioritize threats to handle them more efficiently. Prioritization of tasks reduces operations costs, improves performance of the teams and enables you to prevent fraud.