Searchlight Security and Alias join forces to enhance security assessments using dark web intelligence
As a premier cybersecurity services provider, it is vital for Alias to understand what an attacker knows or can learn about each client so it can help them to build their defenses around the likely avenues of attack.
“Seeing a client’s weaknesses from an adversary’s perspective is the best way to help protect an organization,” said Andrew Noland, Chief Operating Officer of Alias. “There are many sources of information that attackers use to do their due diligence and undertake reconnaissance against an organization, and trying to search all of these manually is incredibly inefficient. Partnering with Searchlight means we can automate those searches with access to clear, deep, and dark web sites, and present it back to our customers in a meaningful way so that they can identify changing threats from an attacker’s perspective.”
DarkIQ is a powerful dark web monitoring solution that uses the most comprehensive dataset on the market – and the only one that includes dark web traffic to and from a customer’s network. The consultancy is now able to set up a unique account for each client at the outset of its security assessment, input the attributes specific to the organization, and monitor the dark web for indicators of external threat. This means that Alias can identify information on its clients in the wild that could be used by criminals to orchestrate a cyberattack – such as leaked credentials, company IP addresses, and unpatched vulnerabilities.
“DarkIQ’s ability to provide pre-attack intelligence that is specific to an organization makes it a powerful addition to augment any cybersecurity consultancy or MSSP’s offering,” said Ben Jones, CEO and co-founder of Searchlight Security. “It enables them to provide greater value to customers with a more accurate understanding of the adversaries and threats they face.”
Through this partnership, Alias has increased the efficiency of its current security assessment service and is now able to offer its clients a report on their attacker’s profile by identifying emerging threats from the deep and dark web. In future, the consultancy expects to provide larger customers with direct access to the platform, so they can undertake dark web investigations themselves.