Feedly Leo

Feedly uses cookies to deliver its service and analyze traffic Got it Threat IntelligenceTrack Emerging Threats With Feedly AIReal-time data collection and enrichment to jumpstart your analysisEdwin Kon Mar 22, 2022The core of Feedly for Threat Intelligence is an AI engine, that automatically gathers, analyzes, and prioritizes intelligence from millions of sources in real-time.In this article, we’ll show you how to use AI Models to:Monitor critical vulnerabilities and zero-daysResearch the behavior of specific threat actors and malware familiesUnderstand the threat landscape around your industryTrack niche cybersecurity topicsStart enterprise trialMeet Feedly AIFeedly AI reads millions of articles, reports, and social media posts every day and automatically tags key threat intelligence concepts: critical vulnerabilities, malware families, threat actors, indicators of compromise, ATT&CK techniques, companies, vendors, industries, etc.Feedly AI automatically tags key threat intel conceptsAll this information is at your fingertips in near real-time via a powerful and intuitive search and tracking interface called (Feedly) AI Feeds.Curious how it works? Let’s take a look at an AI Feed designed to track critical vulnerabilities and zero-days related to Cisco Systems:AI Feeds: A powerful and intuitive search and tracking interfaceCreating an AI Feed is a three-step process:Use AI Models to define the intelligence you want to gather. In our example, we use the ‘High Vulnerability’ and ‘Cisco Systems’ AI Models to discover new critical vulnerabilities related to Cisco Systems.Use AND, OR, NOT operators to combine multiple AI Models and refine your focus. In our example, we use AND to track articles and reports that reference both ‘High Vulnerabilities’ and ‘Cisco Systems’.If needed, refine sources with your own trusted sources. By default, (Feedly) AI Feeds will search across the Cybersecurity Bundle (a collection of 50,000+ security news sources, threat research blogs, newsletters, vendor advisories, government agencies, vulnerability databases, CISO magazines, and Reddit communities curated collectively by 200,000 cyber professionals using Feedly and partitioned by Feedly AI into three tiers based on popularity and authority).With AI Feeds, you can add to a team or personal folder. New articles, reports, or social media posts matching the specified AI Models will appear in the AI Feeds.AI Models produce relevant search results to improve team efficiencyThe power of AI Feeds is that ‘High Vulnerability’ and ‘Cisco Systems’ are not simple keyword matches. These AI Models are machine learning models that encapsulate a broader understanding of each concept:‘High Vulnerability’ is an AI Model that tracks vulnerabilities with a CVSS score above 8 or a CVSS score above 5 that includes a known exploit. If the vulnerability does not have a CVSS score yet, a machine learning model is used to forecast the CVSS score based on the descriptions of the vulnerability. Learn more‘Cisco Systems’ is a ‘Company’ AI Model that tracks for mentions of Cisco by its name or any known aliases. When the company name is ambiguous, a disambiguation model is used to remove false positives.Without AI Models, gathering intelligence would require a tedious effort of trying to find a long list of the right keywords, leaving room for blind spots and lots of irrelevant results.Feedly for Threat Intelligence comes with a wide range of pre-trained AI Models so that you can easily translate your intelligence needs into AI Feeds.Threat intel AI Models you can use to build customized AI FeedsLet’s see how we can combine these AI Models to proactively track specific threats and stay one step ahead of your adversaries.Research the behavior of specific threat actors and malware familiesTracking the behavior of threat actors and malware families can be tedious and overwhelming, taking up valuable time that could be spent hunting for malicious activity in your environment.That’s why Feedly has created a set of AI Models that automatically tag threat actors, malware families, TTPs, and IoCs.Let’s take a look at an AI Feed designed to track the latest IoCs and TTPs related to Lazarus Group across threat intelligence reports published on the web:Gather IoCs and TTPs related to Lazarus Groups from intelligence reports‘Lazarus Group’ is a ‘Threat Actor’ AI Model powered by Malpedia that tracks mentions of the threat actor by name or its many aliases. Learn more‘Indicators of Compromise’ is an AI Model that tracks malicious URLs, IPs, email addresses, domains, and hashes. Learn more‘Tactics & Techniques’ is an AI Model powered by the Mitre ATT&CK v10 framework that tracks tactics, techniques, and sub-techniques and their relationships. Learn more‘Threat Intelligence Report’ is an AI Model that flags intel reports containing in-depth technical details about IoCs, TTPs, threat actors, and malware. Learn moreHere are some additional AI Models you can use to broaden or narrow your threat profiling:Popular threat profiling modelsUnderstand the threat landscape around your industryStaying up to date with the latest attacks against your industry can help you be better prepared when putting defenses in place, as well as help you learn about which threat actors to look out for so you can be more targeted when gathering intelligence.Let’s take a look at an AI Feed designed to gather intelligence about cyber attacks in the finance industry:Track cyber-attacks around the finance industry‘Cyber Attacks’ is an AI Model that tracks instances of cyber attacks and tries to determine who or what the target of the attack is. Learn more‘Finance Industry’ is an ‘Industry’ AI Model that classifies articles related to the finance industry based on company mentions and terminology. Learn moreYou can also easily narrow your focus on a specific type of attack:Track credit card data breachesMonitor critical vulnerabilities and zero-daysManually keeping ahead of new vulnerabilities and zero-days is an impossible task, but you can set up AI Feeds to help you stay up to date on new vulnerabilities that come across the radar of the global cybersecurity community.Feedly aggregates vulnerability information from NVD and over 20 vendor advisory sites — as well as monitoring many sources to find exploits for each CVE — in near real-time.Let’s take a look at an AI Feed designed to surface critical vulnerabilities and zero-days related to a vendor deployed in your environment:Track high vulnerabilities related to ZoomWhen you discover a new CVE, you can use the CVE insights card to get a 360 degree view of that vulnerability and decide if you should create a ticket for your response team.A CVE insights card – a 360 degree view of CVE-2021-44228Track niche cybersecurity topicsYou can also use AI Feeds to track niche cybersecurity topics.Let’s take a look at an AI Feed designed to gather intelligence about malicious, compromised, or hijacked packages:An AI model to track Malicious PackagesHere are some additional AI Models you can use to track niche cybersecurity topics:Popular cybersecurity AI modelsGetting smarter every dayThe world’s leading cybersecurity teams use Feedly for their OSINT, so the product constantly improves, and we add more AI models. Check out the latest AI Models.You might also be interested inThreat IntelligenceFeedly Best Practices for CTI Teams Threat IntelligenceHow Netskope leverages Feedly to accelerate threat intelligence Share --- Feedly uses cookies to deliver its service and analyze traffic Got it TeamThreatIntelligenceCollect, analyze, and share actionable open source threat intelligence fasterGet Started for FreeLearn MoreTeamMarketIntelligenceFind, synthesize, and share industry and competitive intelligence fasterGet Started for FreeLearn MorePersonalNewsReaderRead all your favorite blogs, news sites, and newsletters in one placeGet Started for FreeLearn More --- Feedly uses cookies to deliver its service and analyze traffic Got it Threat IntelligenceGet threat intelligence to your team fast, in the tools they already useThreat IntelligenceTracking the cyber consequences of geopolitical eventsAllMarket IntelligenceThreat IntelligenceNews ReaderFundamentalsThreat IntelligenceAnalyze your closed-source intelligence in FeedlyThreat IntelligenceCyberattack Insights Cards: A dynamic 360° attack view Threat IntelligenceVulnerability Agent: 7 ways to use CVSS Vector filters for smarter CVE prioritizationThreat IntelligenceAsk AI on Threat Actor Insights Cards: Accelerate adversary research with custom queriesThreat IntelligenceResearch IoCs with rich context in seconds, not hoursThreat IntelligenceSurface top threats in CTI newslettersMarket IntelligenceThe Scanner: Exploring Potential FuturesMarket IntelligenceThe Radar: Detecting emerging signalsThreat IntelligencePrompt Engineering: Newsletter template for real-time phishing trendsMarket IntelligenceThe Monitor: Tracking the known presentMarket IntelligenceStartup Innovation Radar: A real-time startup databaseMarket IntelligenceThe InsightOS architectureThreat IntelligenceFeedly MCP Server: Automate CTI workflows with Claude and the Feedly Threat Graph Market IntelligenceStrategic intelligence at the speed of changeThreat Intelligence6 Cyberattack Agent examplesThreat IntelligenceAction critical threats instantly: Send new intel directly to SlackThreat IntelligencePrompt engineering: Generate red team emulation plansThreat IntelligenceCyberattack Agent: Discover and monitor relevant cyber attacksMarket IntelligenceUncover emerging trends within your industryFundamentalsEffortless onboarding for new team members in FeedlyThreat IntelligenceFeedly’s CVSS Estimate Score - Bridging the gap to enhance vulnerability intelligenceMarket IntelligenceUnlock market intelligence insights in 15 languagesMarket IntelligenceTrack innovations in your industry with 9 new AI ModelsThreat IntelligenceCVE Insights Cards: Comprehensive, real-time intelligence --- Feedly uses cookies to deliver its service and analyze traffic Got it Be the first to know about emerging threats Collect, analyze, and share open-source threat intelligence faster using AIStart Free TrialSchedule DemoTrusted by 400+ security teams worldwideIncrease threat coverageMonitor thousands of trusted open web sources. All in one place.GovernmentNews OutletsSecurity BlogsVulnerability DBsVendor AdvisoriesSocial MediaAI FeedsCollect relevant intel in near real-timeCustomized to your needs and industryPowered by 1000+ AI modelsEasy to set upAI InsightsAutomatically extract actionable intelligenceIOCs, TTPs, threat actors, malwareVisualize in MITRE ATT&CK NavigatorExport as STIX, MISP, JSONAsk AISynthesize articles into deliverables with high accuracyCTI-optimized to minimize errors found in generic language modelsAnalyze up to 25 multi-language reportsExtract actionable data like IoCs, TTPs, CVEsFull control over sources, citations, structureStart Free Trial“I was amazed by the sheer amount of information Feedly brings in, and then how quickly that’s cut down to what’s relevant. I’ve not used a tool that has the same level of impact”Adam ThomasThreat and Vulnerability Management Team Lead72% fasterwhen monitoring and researching critical vulnerabilitiesRead case study Insights CardsQuickly review CVEs, malware, actors, and cyberattacksConsolidated timeline of key eventsKey details like severity, exploit, TTPsRelated malware, APTs, CVEs, moreSchedule DemoIntel AgentsIdentify and monitor new TTPs, CVEs, and cyberattacksCustomize to your threat profileWhat? So What? for quick analysisSee what's new verus updatedAutomated NewslettersCreate and send daily cyber briefsContent autofilled from AI Feeds or BoardsCustomized with your company brandingReview, edit, and add your analysisIntegrations & APIInstantly share insights with your team and security ecosystemCreate and automate workflows with no-code integrations to quickly share intelligence with systems and operations teams“Since we started using Feedly, we often have a head start of up to three days before information is communicated by authorities.”Michael NetzbandDirector of Information Security, GISA2x fastercollecting vulnerability intelligenceRead case study See Feedly Threat Intelligence in actionStart Free Trial2 minExplore some popular ways cyber security teams use Feedly to stay one step aheadTrack critical vulnerabilitiesMonitor threat actor behavior (TTPs)Identify cyberattacks in your industryCollect IoCsGet StartedStart discovering emerging security threats in minutesStart Free TrialNo credit card required