One of the first products we developed after a few years of establishing the company was a data breach monitoring platform. This product was designed to provide our stakeholders with early insight if data related to their company was found to be leaked, whether due to breaches caused by third-party service security failures, phishing results that led to credentials being exposed to the public, or even from devices infected by stealer-type malware.
Additionally, we included some general insights typically provided by Threat Intelligence products. We named this product ThreatsTracker.
However, over time, we realized that our stakeholders needed not just information, but also in-depth analysis. Some of them needed confidence that, after credentials were changed and devices cleaned of malware, there were no hidden risks they might still face. With this in mind, we introduced our comprehensive data breach analysis service, which we called Threat Intel as a Service (TIaaS).
Over the past few months, we have offered this service to several stakeholders, helping them discover and understand risks that might have been overlooked in initial mitigation steps. Through this service, we work diligently to identify and address potential threats, which is especially beneficial for stakeholders who may have limited resources—whether in terms of time or effort—to conduct deep analysis on their own.
To provide a clearer picture of how our TIaaS works, we’ve shared one of these approaches in our latest article called: "Understanding Stealer Logs and It’s Role in Security Testing": https://rb.gy/h4yavq
In this article, we walk through the entire process—from understanding the characteristics of stolen data to analyzing it, addressing the challenges that arise, and ultimately using the insights to identify and mitigate risks for our stakeholders.
Given the depth of content in this article, we will be covering more practical applications and specific case studies in a subsequent article. This upcoming article will provide detailed examples of how our analysis methods have been applied in real-world scenarios, highlighting the lessons learned and the practical benefits of our TIaaS.