DomainTools Iris Investigation operates as a proprietary intelligence platform that gathers and processes vast amounts of information on the internet. It combines enterprise-grade domain intelligence and risk scoring with passive DNS data from third-party providers to help predict, detect, and monitor malicious infrastructure effectively. With Iris Investigation, security teams have the ability to gain immediate…
In the SOC, defenders are often true to their name—playing defense to manage detections, assess risk, and protect the network from an ever-evolving barrage of threats. However, attacks don’t start with alerts—they start with the infrastructure that attackers set up to deliver the attack. Learn how you can use real-world attacks to
• Create repeatable processes for assessing indicator risk to support faster triage and more effective threat escalation,
• Rapidly investigate threat actor infrastructure to identify patterns and TTPs, and
• Create profiles that you can use to hunt externally for threats relevant to your organization—moving left in attack detection by finding threats before they find you
DomainTools Iris Investigation Platform combines enterprise-grade domain intelligence and risk scoring with passive DNS. Domain Tools has longevity on its side – having been around for approximately 18 years and collecting data around all public domains on the Internet for that entire period. The depth and breadth of data serves as a big differentiator for…
The company did not confirm whether the ransomware attack was executed via one of its Microsoft Exchange servers, but several cyber leaders commented on a potential connection to the vulnerabilities exploited by multiple actors.