Nozomi Networks has announced the general availability of the Nozomi TI Expansion Pack. Powered by Mandiant Threat Intelligence, the federated solution helps strengthen and streamline the way industrial and enterprise CISOs and their teams anticipate, diagnose and respond to cyber threats across all their critical business operations.
With the Nozomi TI Expansion Pack, Nozomi Networks customers now have the option to enrich Nozomi Networks threat intelligence with Mandiant Threat Intelligence to gain more comprehensive access to real-time information about threats to their IT, OT and IoT systems.
“The cybersecurity threat landscape is rapidly evolving, with attacks growing in both number and impact enterprise-wide,” said Edgard Capdevielle, Nozomi Networks CEO. “To minimize risk and maximize operational resilience, CISOs and their security teams need comprehensive solutions that enable them to quickly assess and respond to threats across their IT, OT and IoT systems. We are pleased to be able to give our customers the option to easily incorporate Mandiant’s world-class threat intelligence as part of a whole solution that delivers superior security outcomes.”
“For nearly a decade, Mandiant and Nozomi Networks have partnered to deliver advanced, AI-powered OT and IoT security solutions to customers,” said Melissa Smith, Google Cloud’s Head of Strategy & Technology Partnerships. “This latest expansion is another critical step in our journey to combine threat intelligence sources and defenses to deliver the best possible security outcomes for the world’s critical infrastructure. By blending Mandiant’s threat intelligence and expertise with Nozomi Networks’ OT threat intelligence and tools, we can enable critical infrastructure organizations to enhance their threat intelligence and investigations for a stronger defense.”
Nozomi Networks also has introduced Vantage Threat Cards, the company’s cloud-based OT/IoT cyber management console. Vantage Threat Cards revolutionize the way users access and derive value from threat intelligence feeds. These cards logically cluster and organize threat data, offering instant access to critical information such as:
- Threat descriptions
- First and last seen dates
- Exploitation status and vectors
- Targeted industries and countries
- MITRE ATT&CK details
- Mitigation suggestions
- And more
Users can swiftly narrow down threats by filtering based on specific countries and regions, ensuring they receive the most relevant information for their needs. Vantage Threat Cards empower OT and IoT cyber teams to quickly scan and filter key threat information, significantly speeding up response times and enhancing accuracy. Analysts can easily input an IP address, domain name, hash or threat actor alias to identify any associated rules, streamlining the identification process. The integration of Mandiant Threat Intelligence will be used throughout the Vantage solution to enhance our offering even further. Updates to the vulnerability data include:
- Improved CVSS mapping
- Detailed summaries
- Lists of vulnerable products
- Exploitation details
- MITRE ATT&CK details
- Workarounds and vendor fixes
- Links back to Threat Cards and malware groups