Product
Kenisha Liu
Dec 11, 2023
Last month’s product update featured a new threat feed that directs your attention to only the crucial areas you need to focus on. Now you have the Threat Boards to match, with all the details on what’s being targeted to triage and mitigate faster than ever.
This month’s update brings our threat feed and boards closer to each other than ever before, bringing you complete coverage, focused on what matters, prioritized for you.
Explore a fresh clean look that gives you an instant state of affairs on every threat, correlation specifics on what data (or people) will be impacted, all the IOCs for each threat compiled for you, and more.
Threat board update overview
Fletch’s AI engine handles all your threat research and correlation work.
The threats that matter to you: The Fletch feed prioritizes and organizes your threats. When you see a threat you want to investigate, get the crucial information to triage and mitigate it fast in its respective Threat Board. You’ll get an overview of the threat right away and know instantly if you are exposed.
A finger on the pulse of the threat landscape: Most threats won’t have correlations to you, but you can still get all the information you need to stay in the know or just gain peace of mind. When you want to investigate a specific threat, you can search it up by name or CVE in the ‘All Major Threats’ section at the top. Even if you’re not correlated, you can see the complete history and activity of the threat. And easily update any stakeholders on any threat.
Learn more about how the new Fletch feed discovers and prioritizes your threats for you, earlier than ever.
See threats through the lens of your world
The top of the threat board gives you a quick state of affairs. See the total number of IOCs, malware hashes, resources, and CVEs you have correlated to the threat. Or check out when it emerged, its maturity, and volume of community chatter.
For a deeper dive on your targeted data, check the correlation overview. ‘Your Correlation’ will show you what’s affected, whether it be tech, industry, geo, or resources with vulnerabilities or malware.
For general information on the threat, jump into the ‘Summary’ section to get an overview of what the threat is targeting and why you should be aware of it. Every threat is tracked from emergence, so you can jump into the summary history for a complete timeline of the threat.
All the IOCs for each threat compiled for you
You can now see all the indicators of compromise and properties associated with the threat. Navigate to ‘IOCs and Properties’ in the correlation overview to see everything organized by data type.
And click “Your Correlations” to see which IOCs correlate to you. The IOCs are downloadable as CSVs so you can easily validate threats against your infrastructure.
See more IOCs than expected? Fletch’s AI engine minimizes your workload by intelligently grouping IOCs with the same threat into a single Threat Collection. Gone are the days of trying to make sense of the convoluted threat landscape and tracking information down yourself.
Get earlier than ever
Pre IOC threat detection
We mean it when we say that Fletch is the earliest threat detection you’ve ever had.
That means even before a threat has any indicators yet, Fletch’s NLP engine knows what the threat is targeting.
You’ll always be ahead of threats coming your way. And as the threat evolves, Fletch will alert you in real-time to include any emerging indicators of compromise that correlate to you.
Take proactive action with the context you need
No more digging for the right information. Each indicator of compromise has a list of resources that appear under ‘Correlation Details’, so you can start to live ahead of threats.
If it’s a threat with vulnerabilities or malware, see a full list of the CVEs and malware indicators to start fixing.
If it’s a threat targeting your tech, see who is using the targeted tech to gauge risk and educate quickly before a vulnerability scanner would pick it up .
If it’s a threat targeting your geo, see a list of who’s in the targeted location that you need to start notifying.