Blogs

Automate your threat research & correlation work | 2023 Product Updates

Product

Automate your threat research & correlation work | 2023 Product Updates

Automate your threat research & correlation work | 2023 Product Updates

Kenisha Liu

Dec 11, 2023

Last month’s product update featured a new threat feed that directs your attention to only the crucial areas you need to focus on. Now you have the Threat Boards to match, with all the details on what’s being targeted to triage and mitigate faster than ever. 
This month’s update brings our threat feed and boards closer to each other than ever before, bringing you complete coverage, focused on what matters, prioritized for you.
Explore a fresh clean look that gives you an instant state of affairs on every threat, correlation specifics on what data (or people) will be impacted, all the IOCs for each threat compiled for you, and more. 
 

Threat board update overview

Fletch’s AI engine handles all your threat research and correlation work.
  • The threats that matter to you: The Fletch feed prioritizes and organizes your threats. When you see a threat you want to investigate, get the crucial information to triage and mitigate it fast in its respective Threat Board. You’ll get an overview of the threat right away and know instantly if you are exposed. 
  • A finger on the pulse of the threat landscape: Most threats won’t have correlations to you, but you can still get all the information you need to stay in the know or just gain peace of mind. When you want to investigate a specific threat, you can search it up by name or CVE in the ‘All Major Threats’ section at the top. Even if you’re not correlated, you can see the complete history and activity of the threat. And easily update any stakeholders on any threat.
Learn more about how the new Fletch feed discovers and prioritizes your threats for you, earlier than ever.

See threats through the lens of your world

The top of the threat board gives you a quick state of affairs. See the total number of IOCs, malware hashes, resources, and CVEs you have correlated to the threat. Or check out when it emerged, its maturity, and volume of community chatter.
For a deeper dive on your targeted data, check the correlation overview. ‘Your Correlation’ will show you what’s affected, whether it be tech, industry, geo, or resources with vulnerabilities or malware. 
For general information on the threat, jump into the ‘Summary’ section to get an overview of what the threat is targeting and why you should be aware of it. Every threat is tracked from emergence, so you can jump into the summary history for a complete timeline of the threat.

All the IOCs for each threat compiled for you

You can now see all the indicators of compromise and properties associated with the threat. Navigate to ‘IOCs and Properties’ in the correlation overview to see everything organized by data type. 
And click “Your Correlations” to see which IOCs correlate to you. The IOCs are downloadable as CSVs so you can easily validate threats against your infrastructure. 
See more IOCs than expected? Fletch’s AI engine minimizes your workload by intelligently grouping IOCs with the same threat into a single Threat Collection. Gone are the days of trying to make sense of the convoluted threat landscape and tracking information down yourself. 

Get earlier than ever

Pre IOC threat detection

We mean it when we say that Fletch is the earliest threat detection you’ve ever had. 
That means even before a threat has any indicators yet, Fletch’s NLP engine knows what the threat is targeting. 
You’ll always be ahead of threats coming your way. And as the threat evolves, Fletch will alert you in real-time to include any emerging indicators of compromise that correlate to you.

Take proactive action with the context you need

No more digging for the right information. Each indicator of compromise has a list of resources that appear under ‘Correlation Details’, so you can start to live ahead of threats.
  • If it’s a threat with vulnerabilities or malware, see a full list of the CVEs and malware indicators to start fixing. 
  • If it’s a threat targeting your tech, see who is using the targeted tech to gauge risk and educate quickly before a vulnerability scanner would pick it up .
  • If it’s a threat targeting your geo, see a list of who’s in the targeted location that you need to start notifying.
Then try out our Fletch beta features. Fletch provides advice that updates with every evolution and generated communications for simplified employee education before you’re breached.

Takeaway

The threat landscape is confusing and intimidating. Only the largest, most sophisticated cybersecurity teams have been able to stay on top of it. Now every team can, with Fletch’s AI engine. 
Last month’s update to the Fletch feed allowed you to see your threats earlier and prioritize your vulnerability scanner and EDR alerts without lifting a finger. This month’s update to the Fletch Threat Boards show you the threat landscape in context of your organization so you can cut out the manual threat work. Now you have all you need to move fast and live ahead of threats with Fletch.
Ready to cut down the time and effort it takes to keep your company secure? Sign up here.

See how much time you can save

Fletch surfaces the 5% of threats that matter to you right now. You’ll have every detail about the threat, what to do about it and what to say. 

Get API access

See how much time you can save

Fletch surfaces the 5% of threats that matter to you right now. You’ll have every detail about the threat, what to do about it and what to say. 

Get API access

See how much time you can save

Fletch surfaces the 5% of threats that matter to you right now. You’ll have every detail about the threat, what to do about it and what to say. 

Get API access

See how much time you can save

Fletch surfaces the 5% of threats that matter to you right now. You’ll have every detail about the threat, what to do about it and what to say. 

Get API access

See how much time you can save

Fletch surfaces the 5% of threats that matter to you right now. You’ll have every detail about the threat, what to do about it and what to say. 

Get API access