alienvault threat alerts in spiceworks
DESCRIPTION
AlienVault Threat Alerts in SpiceWorks help you identify and mitigate threats on your network by: - Scanning network assets monitored by SpiceWorks to look for connections with known malicious hosts - Triggering alerts within SpiceWorks for any issues that are found - Providing remediation advice so you can quickly mitigate the threatTRANSCRIPT
ALIENVAULT THREAT ALERTSCOMING IN SPICEWORKS 7.1
SpiceHead Benefit:Identify compromised hosts in a monitored network without having to deploy Anti-Virus or any other agentRemediation advice from world’s largest crowd sourced threat intelligence database
ALIENVAULT THREAT ALERTS FOR SPICEWORKS
HOW IT WORKS – THREAT MONITORING
Internet
Customers’ Internal Assets In SpiceWorks
Search for connections with known malicious hosts
HOW IT WORKS – ALERT TRIGGERED
Customers’ Internal Assets In SpiceWorks
Alert on connection with known malicious host
THREAT ALERTS IN SPICEWORKS:DASHBOARD & DEVICE DETAILS PAGE
“SpiceWorks has found a connection with a potentially suspicious IP Address 77.240.191.89 on device tmg-mbh.
“
AlienVault Threat Analysis for suspicious IP
ALIENVAULT THREAT ANALYSIS - SUMMARY
ALIENVAULT THREAT ANALYSIS - REMEDIATION
WHAT IS THE OPEN THREAT EXCHANGE?
World’s largest crowd-sourced repository of threat intelligenceUsers of AlienVault OSSIM, USM and Reputation Monitor Alert can voluntarily contribute IP reputation data from devices in their environment
Raw data is cleansed, aggregated, validated and published through OTX
The AlienVault Labs team of security experts validates the data in OTX and contributes data from their research on sophisticated zero‐day threats including malware, botnets, phishing campaigns and more.
Threat intelligence from a diverse install base greatly limits attackers’ ability to isolate targets by industry, location, size, etc:
500,000 malware samples analyzed per day
100,000 malicious IPs validated per day
8,000+ Global Connection Points in 140+ countries