At SecureWorks, we’ve been providing intelligence-driven security solutions from the beginning. Threat intelligence is the fuel that powers the engine of our security operations and greatly enhances the effectiveness of the security solutions we provide.With more than 65 of the world’s most highly regarded security researchers, SecureWorks’ distinguished Counter Threat Unit™ research team (CTU) is what sets us apart. Our researchers analyze threat data across our global client base and actively monitor the cyber threat landscape to provide a globalized view of emerging threats, zero-day vulnerabilities, and the evolving tactics, techniques, and procedures (TTP) of advanced threat actors.
The CTU™ research team's primary objective is to protect your information and operations from today’s most advanced security threats, by applying its research and threat intelligence into all aspects of our security solutions.
With relentless dedication to keeping you ahead of newly identified threats, our CTU research team is:
- Highly regarded within the security industry
- Often first to market with identification many new emerging threats
- Regularly called upon for our expertise by government agencies, law enforcement, and the private industry
In addition, our researchers share pertinent information with the public at large.
For security leaders and professionals, threat intelligence is actionable information that gives you early warning to cyber threats. Intelligence seeks to collect relevant information wherever it can be found; analyzing and synthesizing it into meaningful knowledge on which you can act. In today’s cyber threat landscape, intelligence can alert you to new and emerging global threats that may affect your operations. Intelligence can also help you identify actors who may be targeting your organization such as with Advanced Persistent Threats, providing the insights to help you prepare or take action.
Creating threat intelligence that is meaningful and actionable requires specialized expertise, knowledge, and tools that go well beyond simple alerts and content searches. Experts must know where to look for information that maybe tucked away in the dimmer areas of the Internet and hacker communities, to construct an overall picture from a thousand disparate puzzle pieces of data.
SecureWorks researchers and security consultants are highly versed in the practices and nuances of intelligence formulation. With diverse backgrounds encompassing private security, military and intelligence experience, and combined with the understanding of how your business works, our security experts can deliver the visibility into threats and the actors behind them you need to protect your organization.
Cyber Security IndexThe CTU Cyber Security Index (CSI) is a threat-based, color-coded system provided to notify clients about threats that might require protective measures. The CSI is evaluated daily by CTU researchers and updated when necessary.
ReasonThe threat landscape exhibits typical levels and types of malicious activity. The tenor of recent disclosures, malware activity, and security updates warrants a Guarded standard of vigilance.
Level 1 - GuardedLow to average amounts of malicious activity. Typical network mapping, vulnerability scanning, and recon. Normal malware incidence. Isolated intrusions and denial-of-service attacks. No specific action is recommended.
The CTU will continue to protect clients by maintaining vigilance and using standard operating procedures.