Together, LogRhythm and Webroot have developed a solution to automatically integrate actionable intelligence from Webroot BrightCloud® Threat Intelligence Services into LogRhythm for comprehensive, real-time threat visibility and contextual security analytics.
Webroot BrightCloud Threat Intelligence is delivered into one of four LogRhythm threat lists. The table below describes the threat lists and their mappings to Webroot IP Reputation categories.
LogRhythm Threat List
Webroot BrightCloud IP: Attack
Webroot BrightCloud IP: Bot
Webroot BrightCloud IP: Phishing
Webroot BrightCloud IP: Suspicious
Webroot BrightCloud Threat Category
Windows Exploits, Web Attacks, Denial of Service
Spam Sources, Scanners, Reputation, Proxy, Network, Mobile Threats
Integrated Security and Threat Intelligence
Avoid the taxing security processing imposed by other IP reputation services. Consume and leverage the Webroot BrightCloud IP Reputation Service to automatically take action and respond to events and alarms.
The BrightCloud IP Reputation Service provides a continuously updated feed of dynamic IP reputation data in near-real time (recommended every 5 minutes) into your network security solutions to protect against spam sources, botnets, Windows exploits, scanners, proxies, and other inbound threats. It identifies known malicious IPs and can predict future sources of attack through Webroot’s patented contextual analysis techniques.