Nozomi Networks collaborates with Mandiant

With the general availability of the Nozomi TI Expansion Pack, critical infrastructure organizations now have access to both Nozomi Networks and Mandiant threat intelligence services, integrated to strengthen threat visibility and better defend cyber physical systems and processes.

  • 2 months ago Posted in

Nozomi Networks has introduced the Nozomi TI Expansion Pack. Powered by Mandiant Threat Intelligence. The federated solution helps strengthen and streamline the way industrial and enterprise CISOs and their teams anticipate, diagnose and respond to cyber threats across all their critical business operations.

With the Nozomi TI Expansion Pack, Nozomi Networks customers now have the option to enrich Nozomi Networks threat intelligence with Mandiant Threat Intelligence to gain more comprehensive access to real-time information about threats to their IT, OT and IoT systems.

“The cybersecurity threat landscape is rapidly evolving, with attacks growing in both number and impact enterprise-wide,” said Edgard Capdevielle, Nozomi Networks CEO. “To minimize risk and maximize operational resilience, CISOs and their security teams need comprehensive solutions that enable them to quickly assess and respond to threats across their IT, OT and IoT systems. We are pleased to be able to give our customers the option to easily incorporate Mandiant’s world-class threat intelligence as part of a whole solution that delivers superior security outcomes.”

“For nearly a decade, Mandiant and Nozomi Networks have partnered to deliver advanced, AI-powered OT and IoT security solutions to customers,” said Melissa Smith, Google Cloud’s Head of Strategy & Technology Partnerships. “This latest expansion is another critical step in our journey to combine threat intelligence sources and defenses to deliver the best possible security outcomes for the world’s critical infrastructure. By blending Mandiant’s threat intelligence and expertise with Nozomi Networks’ OT threat intelligence and tools, we can enable critical infrastructure organizations to enhance their threat intelligence and investigations for a stronger defense.”

Nozomi TI Expansion Pack, Powered by Mandiant

Nozomi Networks customers who wish to gain comprehensive access to real-time information about threats to their IT, OT and IoT systems now have access to an integrated threat feed that combines the breadth and depth of Mandiant’s threat intelligence with Nozomi Networks’ industry-leading OT threat intelligence. The Nozomi TI Expansion Pack extends Nozomi Networks’ advanced OT and IoT threat intelligence by providing organizations with a deeper understanding of the coinciding IT threat landscape. This makes it possible to holistically monitor and respond to emerging threats for the strongest possible security outcomes.

Nozomi Threat Intelligence Cards

Vantage Threat Cards, also announced today, are a new presentation capability in Nozomi Vantage, the company’s cloud-based OT/IoT cyber management console.

Vantage Threat Cards revolutionize the way users access and derive value from threat intelligence feeds. These cards logically cluster and organize threat data, offering instant access to critical information such as:

● Threat descriptions

● First and last seen dates

● Exploitation status and vectors

● Targeted industries and countries

● MITRE ATT&CK details

● Mitigation suggestions

● And more

Users can swiftly narrow down threats by filtering based on specific countries and regions, ensuring they receive the most relevant information for their needs.

Vantage Threat Cards empower OT and IoT cyber teams to quickly scan and filter key threat information, significantly speeding up response times and enhancing accuracy. Analysts can easily input an IP address, domain name, hash, or threat actor alias to identify any associated rules, streamlining the identification process.

The integration of Mandiant Threat Intelligence will be used throughout the Vantage solution to enhance our offering even further. Updates to the vulnerability data include:

● Improved CVSS mapping

● Detailed summaries

● Lists of vulnerable products

● Exploitation details

● MITRE ATT&CK details

● Workarounds and vendor fixes

● Links back to Threat Cards and malware groups

These enhancements ensure comprehensive coverage and deeper insights into vulnerabilities, enabling more effective threat management.

The Nozomi TI Expansion Pack is available now for customers using Nozomi Networks’ on-premises and cloud-based monitoring solutions. Vantage customers have the added benefit of accessing the new threat intelligence feed through Nozomi Threat Cards.

Kaseya has introduced Kaseya 365 User, joining Kaseya 365 Endpoint which launched in April 2024, at...
Logicalis receives the global accolade, in recognition of its leadership and performance in...
47% of MSPs are drowning in large volumes of security data and 42% are challenged by implementing...
Transformation, growth and greater charitable impact made possible by new endowment.
Monica boosts MSP efficiency with personalized, data-driven insights.
Dyanix, a leading provider of data and information solutions, has joined the M-Files Partner...
Equips the channel to help accelerate cloud adoption, unlock new revenue streams, and enhance...
Moovila has formed a strategic partnership with MSP+, a trusted consulting and education hub for...