QOMPLX’s Cyber Risk Exposure Solution Adds Extensive New Datastreams
QOMPLX has enhanced its attack surface mapping tool, QOMPLX Scan, by integrating extensive cyber security risk data, including breached passwords, vulnerabilities, and threat actor behaviors. This data enrichment enables organizations to prioritize threats and improve incident response. The solution automatically ingests data from diverse sources, thus enhancing visibility and reliability across security frameworks. With multiple databases, including breach content and threat actor behavior databases, QOMPLX aims to equip users with actionable insights to mitigate risks in an evolving cyber landscape.
- Integration of vast cyber risk data enhances threat prioritization.
- Improved visibility and actionable insights for better security.
- Automatic ingestion of data from multiple sources streamlines processes.
- Comprehensive databases strengthen risk quantification and modeling.
- None.
Our premier attack surface mapping tool now includes QOMPLX’s massive cyber security risk datastreams of breached passwords, security tools, vulnerabilities, exploits & threat actor behaviors.
TYSONS, Va., July 15, 2021 (GLOBE NEWSWIRE) -- QOMPLX™, a global leader in cybersecurity & risk analytics, is proud to announce the addition of multiple and vast new datastreams within its internet attack surface mapping solution, QOMPLX Scan, and managed detection and response offerings.
Data enrichment transforms noise into intelligent and usable insights, and QOMPLX’s cyber enrichment databases fuse multiple sources of disparate data to identify and prioritize threats, helping customers to avoid becoming the next victim. It also helps insurers and governments understand the rapidly changing nature of current cyber risk exposures, breaches, and losses.
In an era of accelerating risks from ransomware, business email compromise, and other digital threats, corporations and governments must maintain an increasingly large number of security solutions in different formats across networks spanning the globe. At the center of this flood of information, organizations must collect massive volumes and varieties of data from both technical and non-technical sources. The problem is not always an inability to detect, but a lack of capacity to evaluate all the available information and discern the signal from the noise.
“Data enrichment is a key ingredient for effective detection, rapid response, and recovery,” said CEO Jason Crabtree. “QOMPLX directly collects, selectively licenses, and integrates some of the world’s largest libraries of enriched cyber data. We leverage our core platform to enrich and unify this information. This provides organizations with more actionable data and insights to power superior visibility, accurate threat modeling, and ultimate system reliability.”
Unique features include:
- Automatic ingestion and storage of large data feeds from multiple sources
- API access with periodic scheduling of data pulls/pushes (e.g., hourly, daily, weekly, monthly)
- Support for event-driven processing, data tagging, and advanced multi-database search & analytic queries.
For years, QOMPLX has worked diligently and invested significant capital to build, maintain, and acquire some of the largest and most comprehensive datasets and collection infrastructure in the world. These substantial assets include:
- Breach Content Database - Provides a core dataset for supporting historical breach record searches, allowing matching of emails and domains to breach records to reduce risk from compromised credentials and validate the impact of prior breach events.
- Cyber Event Database - Captures a list of broader likely and confirmed events by harnessing meta-data from publicly discussed cyber events from a broad range of sources, including SEC EDGAR filings, U.S. Health and Human Services information, press releases, news reports, the dark web, and more.
- Reputation Database - Ingests, harmonizes, and stores reputation data feeds allowing users to determine if computers or domains are compromised or involved in malicious activities.
- Vulnerability & Exploit Database - Provides critical data to build a substantial catalogue of vulnerabilities and exploits, informing threat modeling, risk quantification, and defensive prioritization across cyber and insurance use cases.
- Threat Actor & Behavior Database - QOMPLX takes on the difficult task of mapping threat actors’ common tactics and capabilities. Integrates numerous sources, including other QOMPLX enrichment databases from the MISP community threat intelligence feeds, VERIS, and unique QOMPLX analyst findings, searchable via MITRE ATT&CK behaviors.
- Cyber Tools Database - Constructs a substantial and growing catalogue of metadata on offensive and defensive tools.
- For defenders, this includes QOMPLX tools such as Scan, Privilege Assurance, Identity Assurance, & Data Fusion; numerous major industry tools such as QRadar, Splunk, and major endpoint & firewall vendor offerings.
- Examples of offensive tools include Mimikatz, Empire, CobaltStrike, Rubeus, CrackMapExec, and more.
- Internet Infrastructure Health Database - Incorporates QOMPLX scan data, global routing certificate, and ISP data to develop a comprehensive view of internet infrastructure health.
About QOMPLX
QOMPLX helps organizations make intelligent business decisions and better manage risk through our advanced, proprietary risk cloud. We are the leaders at rapidly ingesting, transforming, and contextualizing large, complex, and disparate data sources through our cloud-native data factory in order to help organizations better quantify, model, and predict risk. Our specialized experts and technology solutions in cybersecurity, insurance, and finance power leading global corporations and mission critical public sector agencies.
For more information, visit qomplx.com and follow us @QOMPLX on Twitter.
CONTACT:
James Faeh, Director of Corporate Communications
james.faeh@qomplx.com
FAQ
What new features were added to QOMPLX Scan in July 2021?
How does QOMPLX enhance data enrichment for cyber security?
What types of databases does QOMPLX offer for cyber security?