Together, LogRhythm and Webroot have developed a solution to automatically integrate actionable intelligence from Webroot BrightCloud® Threat Intelligence Services into LogRhythm for comprehensive, real-time threat visibility and contextual security analytics.

Webroot BrightCloud Threat Intelligence is delivered into one of four LogRhythm threat lists. The table below describes the threat lists and their mappings to Webroot IP Reputation categories.
LogRhythm Threat List 
Webroot BrightCloud IP: Attack 
Webroot BrightCloud IP: Bot 
Webroot BrightCloud IP: Phishing 
Webroot BrightCloud IP: Suspicious 
Webroot BrightCloud Threat Category 
Windows Exploits, Web Attacks, Denial of Service
Botnets 
Phishing 
Spam Sources, Scanners, Reputation, Proxy, Network, Mobile Threats 
Integrated Security and Threat Intelligence  
Avoid the taxing security processing imposed by other IP reputation services. Consume and leverage the Webroot BrightCloud IP Reputation Service to automatically take action and respond to events and alarms.

The BrightCloud IP Reputation Service provides a continuously updated feed of dynamic IP reputation data in near-real time (recommended every 5 minutes) into your network security solutions to protect against spam sources, botnets, Windows exploits, scanners, proxies, and other inbound threats. It identifies known malicious IPs and can predict future sources of attack through Webroot’s patented contextual analysis techniques. 



Enter your info to talk with a Webroot representative about adding IP Reputation service.
Enhance your LogRhythm SIEM with WEBROOT THREAT INTELLIGENCE | LogRhythm The Security Intelligence Company | WEBROOT Smarter Cybersecurity