The latest acquisition by Microsoft is a very interesting one that could make threat intelligence an intrinsic part of the firm’s products.
The acquisition in question is that of RiskIQ, a startup based in San Francisco that specialises in threat intelligence. What makes RiskIQ rather interesting is that it analyses the internet and crowdsourced information to provide threat intelligence, contextual information regarding attacks, indicators of compromise and more.
“RiskIQ helps customers discover and assess the security of their entire enterprise attack surface—in the Microsoft cloud, AWS, other clouds, on-premises, and from their supply chain. With more than a decade of experience scanning and analyzing the internet, RiskIQ can help enterprises identify and remediate vulnerable assets before an attacker can capitalise on them,” writes vice president of cloud security at Microsoft, Eric Doerr.
While this may not matter to the average home user, baking this sort of threat intelligence into products that are likely already being used by massive enterprises is great news.
Indeed, Microsoft hasn’t said what it intends to do with RiskIQ aside from it being a “powerful addition to our security portfolio”. With that having been said, it would be surprising if RiskIQ’s intelligence doesn’t make an appearance in Microsoft 365 Defender, Azure Defender, Azure Sentinel and Microsoft’s other security solutions.
“We’re thrilled to add RiskIQ’s Attack Surface and Threat Intelligence solutions to the Microsoft Security portfolio, extending and accelerating our impact. Our combined capabilities will enable best-in-class protection, investigations, and response against today’s threats,” said co-founder and chief executive officer at RiskIQ, Elias Manousos.
RiskIQ says that it will continue to support existing customers as it grows its community. The value of the acquisition was not disclosed.
[Source – Microsoft]