Steven,
There are several companies that offer security threat intelligence.
The one I worked with was iDefense, and I was very impressed with their
services. We purchased the Archer Enterprise Security Management console
through them, which received an XML feed of vulnerability data going back
several years that we mapped back to IT assets. We also received real-time
e-mail alerts on emerging threats and vulnerabilities found by researchers
or discovered in the wild, as well as updates as more information became
available about them. They were purchased by Verisign shortly after I
decided to leave my previous job to become a full time consultant, so I'm
not sure if the service has changed for the better or worse since then. I'm
sure they would be willing to allow a trial before purchasing. Symantec has
the DeepSight Alert Service, which appears to be similar, but I have no
personal experience with that product.
Good luck in your search,
--
Joseph W. Shaw, II
CISSP, CCNA
Sr. Consultant - Solving IT!
On 7/5/06, Steven Allison (DHL US) < Steven.Allison@dhl.com> wrote:
Does anyone know of an organization or service that monitors security
threat activity such as, Bot Command and Control activity, DDOS attacks,
exploit creation information, etc. Basically I am looking for a service
that details any threat related activity (past, present, or projected)
many corporations will or have faced. Since I don't have a staff of 25
to monitor every CERT report, Bot related traffic stream, IRC chat
rooms, etc, we are looking to pay for this service. Any help would be
greatly appreciated.
Best Regards,
Steven R. Allison, CISSP
Head of Threat and Vulnerability Management
DPWN IT-Services
DHL Express
8701 E. Hartford Dr.
Scottsdale, AZ. 85255
Phone: 480-375-6490
Cellular: 480-226-2495
FAX: 480-375-7825
Steven.Allison@dhl.com
"You have enemies? Good. That means you have stood up for something,
sometime in your life."
- Winston Churchill
