Understanding the Impact of Predictive Threat Intel - 5 Times Augur Saved the Day
If your SOC is concerned about reducing the attack surface represented by novel threats, emerging vulnerabilities and zero-day attacks, there’s no more impactful threat intel than SecLytics Augur predictive threat intelligence. No one else can tell you where attacks will come from before the first attacks launch to provide unique patient zero protection.
Augur makes over 400K predictions per year, and while they don’t all make the headlines, but here are five critical vulnerabilities that Augur provided advance warning and protection against.
MOVEit vulnerability is one of the most important supply chain hacks of 2023, visible everywhere in the news, especially since the U.S. government confirmed that multiple federal agencies have fallen victim to cyberattacks exploiting vulnerabilities in the software. Augur predicted more than 100 IPs attributed to Cl0p and the MOVEit vulnerability. You can learn more about MOVEit and what Augur predicted here.
One of the biggest security stories in late 2022 and early 2023 was the discovery of the ProxyNotShell vulnerability in Microsoft Exchange Server. Though Microsoft was quick to issue patches, as of early 2023, more than 60,000 active Exchange Servers remained unpatched, and impacts continue to be felt. Research by Cisco Talos listed 17 IPs associated with ProxyNotShell; of those 17, Augur predicted seven, giving Augur subscribers advanced protection. You can read our research piece on what Augur predicted and when here.
First discovered and reported by a security researcher at Alibaba, China's largest e-commerce company, in December of 2021, Log4Shell was one of the biggest ongoing security stories of 2022, with security researchers seeing millions of attempted exploits on Apache web servers, many of which turned into successful denial-of-service (DoS) attacks. Augur predicted and blocked important infrastructure elements on average 18 months ahead of initial attacks. You can find out more about Augur and our Log4j predictions here.
The Colonial Pipeline ransomware hack in May 2021 had seismic repercussions as the first cyberattack to shut down critical economic infrastructure in the U.S. In the end, Colonial had to pay a $4.4 million ransom to get back up and running. Even a week after the attack, 70% of gas stations in North Carolina and 50% in Virginia, Georgia, and South Carolina were still dry. Colonial Pipeline put ransomware on the map as a major threat vector. Augur classiAugurfiers picked up clear signals months ahead of the hack. Our scoring models indicated a high level of certainty that the identified IP ranges would be used by cybercriminal groups, so Augur issued an alert to recommend blocking the IP range and added the IPs to the blocklists used by our endpoint automations. You can learn more about what we knew and when here.
The SolarWinds Orion supply chain hack was one of the most impactful hacks of 2020/21, with more than 18K companies downloading malicious updates. In a powerful demonstration of the value of predictive intelligence, Augur accurately flagged significant command and control (C2) infrastructure used as part of the Sunburst malware hack that was at the heart of the SolarWinds vulnerability. You can read more about Augur and SolarWinds here.
Augur Predictive Intelligence Is Your Early Warning System
Augur is your only true early warning system available today and your best insurance policy against novel threats. Our data integrates directly into most leading security platforms and is a must-have if your organization is serious about threat intel.
Our smart behavioral prediction models identify and group threat actors based on patterns of activity. The platform can then predict novel attacks up to 50 days out. At the time of prediction, these predictions are often +-90% unique compared to other leading threat data sources.
Find Out More
Curious to see how Augur works and how Augur’s predictive intelligence can improve your patient zero protection and overall security posture? You also can learn more about how Augur works and how it solves real-world security problems.