OpenDNS Creates Cloud Based Threat Intelligence API

This article is a company-provided press release and ProgrammableWeb cannot vouch for the accuracy of the statements within. If you have questions regarding the information below, please contact the company that issued the press release.

OpenDNS, a leading provider of cloud-delivered security, today announced that it has opened its enforcement API to customers. This API automatically turns the threat intelligence generated by customers’ own security and incident response teams into threat prevention, providing real-time protection for users and devices anywhere in the world. OpenDNS is the first cloud-delivered security provider to enforce threat intelligence through APIs and to provide an open, interoperable platform to its customers.

In related news, the company also announced two new partnerships with leading threat intelligence platform providers ThreatConnect and ThreatQuotient. Both companies have integrated into the Umbrella security service to combine OpenDNS’s global enforcement capabilities with platforms that allow customers to aggregate, analyze and prioritize their threat intelligence.

“There is a very real industry pain point that enterprise customers face today. Unfortunately, security solutions don’t connect technically or work well together. At OpenDNS, we felt it was important to take the lead on making security technology more interoperable and offering APIs as a key aspect of our platform,” said Dan Hubbard, CTO of OpenDNS. “The value of threat intelligence does not come from mere information, but from the ability to programmatically translate that information into action. By enabling customers to combine curated threat intelligence with our global cloud-delivered network security platform through APIs, we believe that we will ultimately make all companies more secure.”

OpenDNS API integrations offer a competitive advantage to customers by dramatically reducing the time between threat detection and prevention from hours to seconds. By monitoring new indicators of compromise (IOCs) generated by internal or third-party threat intelligence feeds, customers can use OpenDNS’s global platform to automatically prevent, not just detect, attacks against both on and off-network devices without any human intervention. Immediately blocking this activity allows customers to quickly contain breaches and prevent malware or phishing from compromising their systems and users.

Today’s security teams are finding that operationalizing threat intelligence from multiple sources can be expensive and time-consuming. For customers who use commercial threat intelligence platforms (TIPs) to ingest and analyze multiple sources of threat intelligence, today’s integrations with ThreatConnect and ThreatQuotient helps them take immediate action by converting this aggregated intelligence into actual threat prevention.

“ThreatConnect was built to be an open platform that ingests multiple types of intelligence, whether structured or unstructured, internal or external,” said Adam Vincent, CEO of ThreatConnect. “Securely integrating our platform with OpenDNS makes our customers safer and able to better analyze the multitude of threat data at their fingertips. By operationalizing their threat intelligence, our users take advantage of OpenDNS’s API and are better able to protect themselves from threat actors.”

“Enterprises are looking for ways to help security teams streamline the lifecycle of threat intelligence and empower analysts to make more effective decisions,” said Wayne Chiang, CEO and co-founder of ThreatQuotient. "Integrating the ThreatQ platform with OpenDNS’s API allows customers to take advantage of their intelligence by making more informed deployment decisions based on supporting context and IOC scoring recommendations. This is a game-changer for many companies that do not have the resources to chase every IOC that makes it into a blacklist.”

Be sure to read the next Security article: VENOM Virtualization Bug Puts Data Centers at Risk

 

Comments (0)