Snowflake Security Data Lake Customers Harness the Power of Cybersixgill’s Extensive Automated Collection of Deep, Dark and Light Web Threat Intelligence
Tel Aviv, ISRAEL, April 5, 2022 – cybersixgill, the leading provider of real-time, actionable threat intelligence, today announced its partnership with Snowflake, the data cloud company, to aggregate comprehensive cyber threat intelligence, including access to the deep, dark and light web data feed more extensive, to Snowflake Data Market. Through this partnership, companies can seamlessly combine Cybersixgill threat intelligence data into their Snowflake security data lake.
Snowflake Data Marketplace gives data scientists and business intelligence and analytics professionals access to 1,100 live, query-ready data sets from more than 200 data providers and third-party data service providers. (These are the current figures as of January 31, 2022).
“Security leaders and professionals are asking for easy access to threat intelligence that makes them more effective at preventing and stopping breaches,” said Omer Singer, director of cybersecurity strategy at Snowflake. “Integrating an industry leader like Cybersixgill for threat intelligence into the Snowflake Data Marketplace enables our customers to tap into an incredibly comprehensive collection of deep, dark and light web data on relevant threat actors, their targets and techniques. Snowflake’s high-performance architecture means customers can apply those IOCs and TTPs to their own petabyte-scale security data. With this critical intelligence, companies can identify attacks earlier and respond to incidents faster, multiplying the benefits that the security data lake brings to their cyber defense.”
Centralized threat intelligence for users across the enterprise
Cybersixgill’s automated threat intelligence solutions provide real-time contextual intelligence and necessary information about the nature and origin of each threat. Analysts can leverage the best-in-market data collection of millions of intelligence items and thousands of Indicators of Compromise (IOCs) from the deep, dark, and light web, including historical data going back 30 years, deleted posts, groups of messages by invitation only. and millions of threat actors.
“A major challenge with threat intelligence is the ability to analyze and act on the vast amounts of data it generates. Additionally, traditional storage methods prevent companies from having long-term access to that data for a historical review of past compromises, which is critical when assessing risk exposure and applying long-term attribution to advanced persistent threats ( APT),” Brad said. LaPorte, an advisor to Lionfish Tech Advisors and a former Gartner analyst. “Cybersixgill’s integration into the Snowflake data lake is an industry first – breaking down silos and making threat intelligence widely available to users across the enterprise for years to come. The synergy of this partnership will be essential for organizations as they rapidly adopt modern architectures such as Extended Detection and Response (XDR) powered by expansive data lakes. Research shows that more than half of organizations plan to implement a data lake in the next year. Because of this, I recommend that all companies using Snowflake go to the Marketplace and get Cybersixgill right away.”
“The ongoing shift to the cloud and the increasing centralization of security for enterprise organizations has resulted in a vast amount of data that needs to be ingested and analyzed,” said Gabi Reish, Director of Business and Product Development at Cybersixgill. “With the Snowflake Data Marketplace, organizations now have the ability to combine third-party data with their own to build security solutions and applications that enable rapid, informed detection and response. Joining the Snowflake Data Marketplace is part of our strategy to offer the broadest collection of threat intelligence data to our customers and enables users across the organization to consume threat intelligence in multiple ways.”
Cybersixgill offers several listings, many of which are free to Snowflake customers, on the Snowflake Data Marketplace, including:
Malware Insights: It enables users to automate malware investigation and IOC blacklisting with malware listed on dark web file-sharing sites, marketplaces, and more.
Compromised Sites – Enables the creation of automated remediation processes against phishing and ransomware attacks based on malicious domains and URLs sold on the dark web.
Compromised endpoints: Helps organizations protect themselves from front-end brokers and ransomware by gaining unique intelligence on IP addresses mentioned on underground sites that have a compromised RDP/FTP/VPS connection.
Dark food – It provides Snowflake users with an automated source of malicious IOCs complete with essential context and information, and the ability to preemptively block items that threaten your organization.
Cybersixgill Threat Intelligence Solution Available on Snowflake Data Marketplace here.
Cybersixgill brings agility to cyber threat intelligence, with fully automated threat intelligence solutions to help organizations proactively detect and protect against phishing, data leaks, fraud, malware and vulnerability exploitation, improving cyber resiliency and minimizing risk exposure in real time. The company has hundreds of clients across North America, EMEA and APAC, including global enterprises, financial institutions, MSSPs, government and law enforcement agencies. For more information visit https://www.cybersixgill.com/ and follow us on Twitter and LinkedIn.