Filigran

📝 New blog alert 📝

In the fast-paced world of cybersecurity, relevancy and timeliness are everything. Managing the lifecycle of Indicators of Compromise (IoCs) can be a daunting task, especially when dealing with a deluge of data.

Let’s delve into our solution in our latest blog article written by Souad Hadjiat and Angélique Jard, both Software Engineer at Filigran!

🌟 What's inside?
With the introduction of the Score Decay algorithm in OpenCTI 6.0, managing IoC lifecycles has never been easier:
🔹 Discover how the Indicator lifecycle changes with the new Decay algorithm
🔹 Learn how the OpenCTI platform selects decay rules for Indicators
🔹 Understand the impact of score updates by UI or connectors
🔹 Explore administration of decay algorithm and rules

👀 Read more here: https://blog.filigran.io/introducing-decay-rules-implementation-for-indicators-in-opencti-472f6e8449fb
Remember, your feedback and suggestions are invaluable in shaping the future of OpenCTI, so don't hesitate to share your thoughts in the comment section or in our Community Slack channel!

Introducing decay rules implementation for Indicators in OpenCTI Cyber Threat Intelligence is made to be used. To be useful, it must be relevant and on time. It is why managing the lifecycle of Indicators…

🚀 HARFANGLAB x FILIGRAN 🚀

We are thrilled to announce our partnership with HarfangLab!

HarfangLab is a provider of advanced cybersecurity solutions. At the core of HarfangLab's offerings is HarfangLab EDR (Endpoint Detection and Response), a cutting-edge platform designed to provide both proactive and reactive protection against cyberattacks. Certified by ANSSI with CSPN accreditation, hashtag EDR embodies reliability and adheres to the highest security standards.

Our collaboration introduces a game-changing , seamlessly integrating with HarfangLab's platform, opening doors to:
🔗 Integrate OpenCTI's IOCs into HarfangLab
🔗 Retrieve Security Events and Threats from HarfangLab for integration into OpenCTI

But what does this mean for you?
🔹 Enhanced Detection: Strengthened threat detection leveraging OpenCTI's extensive repository of high-quality indicators, enhancing accuracy and minimizing false positives.
🔹 Speed & Automation: HarfangLab EDR connector automates real-time transmission of indicators, streamlining detection processes and ensuring rapid threat intelligence communication and exploitation.
🔹 Intelligence-Led Response: Alerts in OpenCTI leverage its complete threat knowledge base, empowering analysts with contextual insights for efficient threat evaluation and response.
🔹 Practicality & Integration: Seamless data exchange between OpenCTI and HarfangLab reduces manual workload for analysts, freeing up time for critical tasks.

This new connector empowers cybersecurity experts to navigate evolving threats confidently, focusing on mission-critical tasks.

👀 Curious to learn more? Read our blog article written by Frédéric BASLER, software engineer at Filigran: https://blog.filigran.io/opencti-harfanglab-a-connector-to-enrich-cti-data-and-optimize-incident-response-0784b5c0717e
Stay tuned for updates as we innovate and elevate cybersecurity standards together.

OpenCTI & HarfangLab: a connector to enrich CTI data and optimize incident response Presentation of the HarfangLab Connector : a technical approach for enhanced cybersecurity

🎙 On March 20th, Jean-Philippe SALLES, VP of Product Management at Filigran, had the chance to participate in a live broadcast organized by HarfangLab in collaboration with RISKINTEL MEDIA.

The focal point of this engaging discussion was "The cyberwarfare of all against all: strategies for survival." Facilitated by Yasmine DOUADI, CEO and founder of RISKINTEL MEDIA and the Risk Summit , the conversation aimed to cover a range of diverse topics:
🔹 Assessing the current state of geopolitical cyber threats: Are they driven by intentions to destroy, disrupt, or spy?
🔹 Contemplating the fate of businesses amidst the crossfire of cyber warfare: Are they destined to remain mere collateral damage?
🔹 Crafting effective counterstrategies against state-sponsored cyber actors.
🔹 Delving into the intricacies of cyber espionage and the deployment of spyware tools.
🔹 Analyzing the roles and responsibilities of France and Europe in the global cybersecurity landscape.

🤝 Huge thanks to RISKINTEL MEDIA and HarfangLab for orchestrating such a meaningful event.
Kudos to all the distinguished speakers: Ivan Kwiatkowski, cybersecurity researcher at HarfangLab, Félix Aimé, cybersecurity researcher at Sekoia.io, and Kevin Limonier, expert in the Russian-speaking cyberspace, for their invaluable insights and contributions 👏.

👀 Catch the replay (in FR) of the broadcast here: https://www.youtube.com/watch?app=desktop&v=89-JHulVo4U

.

Géopolitique profonde de la cybercriminalité - Décryptage et analyse Lorsque les tensions géopolitiques explosent, que se passe-t-il dans le cyberespace et comment cela peut-il vous impacter… ou non ?On en débat dans cette émi...

𝐋𝐞𝐭’𝐬 𝐭𝐚𝐤𝐞 𝐚 𝐦𝐨𝐦𝐞𝐧𝐭 𝐭𝐨 𝐜𝐞𝐥𝐞𝐛𝐫𝐚𝐭𝐞 🎉

What an exhilarating few weeks it's been for us 😀 !

We proudly announced our Series A funding, a testament to the hard work and dedication of our team, as well as the belief of our investors in our vision. Additionally, we unveiled the latest version of 6.0 🚀, showcasing game changing features to empower capabilities. And to top it off, we revealed our new identity ✨, reflecting our growth and evolution as a company.

Speaking of growth, our team has expanded from 30 to 50 amazing people in less than six months 🔥 ! To mark these achievements, we recently gathered to reflect, recharge, and celebrate. It's also an opportunity for us to reconnect as a team, recharge our batteries, and align ourselves for the exciting journey ahead.

But it's not just about us. We wanted to share this moment with you all. Your support, feedback, and encouragement have played a significant role in our story, and for that, we're truly grateful 🤝 .

So here's to our collective journey, filled with challenges and endless possibilities. Thank you for being a part of it!
Cheers! 🥂

🔥 𝐁𝐑𝐄𝐀𝐊𝐈𝐍𝐆 𝐍𝐄𝐖𝐒: 𝐎𝐩𝐞𝐧𝐂𝐓𝐈 𝟔.𝟎 𝐢𝐬 𝐨𝐮𝐭! 🔥

The latest release of our opensource CyberThreat Intelligence platform, 6.0, has been available since February 28th!
This milestone represents a significant leap forward in our mission to empower organizations with cutting-edge threat intelligence capabilities.

Here's a sneak peek at some of the exciting new features:
🌟 Generative AI: boost your analyst workflow productivity,
💡 Decay algorithm: depreciate indicator scores over time based on defined rules,
⚠️ Confidence Level System: take control of user impact on your knowledge base,
🔃 Automated CSV Feed Ingester: streamline your data handling process and save valuable time,
📘 Improve Filtering system: extract meaningful intelligence from your data,
🤖 Connector Enhancements: empower your threat intelligence integration capabilities.

Not only are we introducing powerful new features, but we're also unveiling a fresh look for our platform! 🎨 With a revamped left menu, a new breadcrumb feature and a modern identity, is now more dynamic and user-friendly than ever before.

Stay tuned for our upcoming blog post, where we'll dive deeper into these features and explore how they can revolutionize your operations.

👀 Want to know more? Read our release note: https://github.com/OpenCTI-Platform/opencti/releases/tag/6.0.0

🚀 Exciting News Alert! Filigran is part of Notion Capital Top 100 Startups!

In the recently released Cloud Challengers Top 100 report for 2024 by Notion Capital, Filigran has been recognized as one of the top 100 startup challengers in Europe's business landscape 🔝!

This reports aims to identify the very best early-stage business software in , those with the potential to challenge the established order and become major success stories in the European ecosystem. The report evaluates and ranks companies based on three pillars: founders, funding, and product, rooted in data and analysis of the European startup landscape.

🤝 A huge thank you to Notion Capital for their rigorous evaluation process and for recognizing the potential of startups like ours. We are grateful for this acknowledgment.

Congratulations to all the startups that made it onto the list. It's inspiring to see such a diverse range of companies driving hashtag and pushing boundaries in the European ecosystem. 🎉

📖 Read the full report: https://www.notion.vc/cloud-challengers-2024/notion-capital-cloud-challengers-report-2024

Notion Capital Cloud Challengers Report 2024 The report aims to identify Europe’s top 100 early stage, B2B SaaS/Cloud companies.

🛡 𝐓𝐡𝐫𝐞𝐚𝐭 𝐈𝐧𝐭𝐞𝐥𝐥𝐢𝐠𝐞𝐧𝐜𝐞: 𝐰𝐡𝐲 𝐬𝐭𝐚𝐧𝐝𝐚𝐫𝐝𝐢𝐳𝐚𝐭𝐢𝐨𝐧 𝐢𝐬 𝐤𝐞𝐲 𝐭𝐨 𝐜𝐨𝐦𝐛𝐚𝐭𝐢𝐧𝐠 𝐭𝐡𝐫𝐞𝐚𝐭𝐬? 🛡

With the increasing complexity of cyberattacks and the rapid evolution of detection methods, it has become crucial to share not only technical but also contextual and operational information.

In a recent article published on Journal du Net (𝑖𝑛 𝐹𝑟𝑒𝑛𝑐ℎ), Samuel Hassine, CEO at Filigran, examines the necessity of accelerating the adoption of standards in threat intelligence.

To address this need, three dimensions of standardization are identified:
🔹 Data format and encoding
🔹 Taxonomy and classifications
🔹 Shared repositories

The adoption of common standards fosters a rise in skills and homogeneous maturity in the field of cybersecurity, enabling organizations to better protect themselves against emerging threats.

📖 Read the full article for comprehensive insights: https://www.journaldunet.com/cybersecurite/1528305-threat-intelligence-pourquoi-la-standardisation-est-cle-dans-la-lutte-contre-les-menaces/
✏️ Share your thoughts and experiences in the comments below!

Threat Intelligence : pourquoi la standardisation est clé dans la lutte contre les menaces Pour tirer pleinement partie des informations issues du renseignement sur les menaces, il est urgent d'accélérer l'adoption de standards. Explications.

👋 Welcome our new team members!

We’re pleased to intoduce François Grunert , ChunHan Lee, 🌰 Stephanya C., Jean-Baptiste Orozco and Jeremy Cloarec as the latest additions to our team. They’ll be contributing their skills to shape the future of our brand and platforms, including & 🛠️

Thank you for choosing to be part of our team! Your trust and commitment are truly appeciated. Looking forward to achieving great things together 🤝

📢 Big news!
VIGINUM, the French government's technical and operational service for countering digital manipulation, has just published the first version of its doctrine “Capitalizing on campaigns and incidents of information manipulation in OpenCTI” (in French) 🔥 !

“𝑇𝑜 𝑑𝑎𝑡𝑒, 𝑂𝑝𝑒𝑛𝐶𝑇𝐼 𝑖𝑠 𝑡ℎ𝑒 𝑜𝑛𝑙𝑦 𝑝𝑙𝑎𝑡𝑓𝑜𝑟𝑚 𝑡ℎ𝑎𝑡 𝑐𝑎𝑛 𝑢𝑠𝑒 𝑡ℎ𝑒 𝑆𝑇𝐼𝑋 2.1 𝑙𝑎𝑛𝑔𝑢𝑎𝑔𝑒 𝑎𝑑𝑎𝑝𝑡𝑒𝑑 𝑡𝑜 𝐿𝑀𝐼. 𝐴𝑓𝑡𝑒𝑟 𝑒𝑥𝑝𝑙𝑜𝑖𝑡𝑎𝑡𝑖𝑜𝑛, 𝑉𝐼𝐺𝐼𝑁𝑈𝑀 𝑟𝑒𝑐𝑜𝑚𝑚𝑒𝑛𝑑𝑠 𝑢𝑠𝑖𝑛𝑔 𝑡ℎ𝑒 𝑆𝑇𝐼𝑋 2.1 𝑙𝑎𝑛𝑔𝑢𝑎𝑔𝑒 𝑎𝑛𝑑 𝑡ℎ𝑒 𝑂𝑝𝑒𝑛𝐶𝑇𝐼 𝑝𝑙𝑎𝑡𝑓𝑜𝑟𝑚.”

At Filigran, we're thrilled to see our platform being utilized to enhance efforts at a national level. This collaboration underscores the importance of standardized language and coordinated approaches in combatting sophisticated .

Our mission with has always been to provide organizations with powerful tools 🛠 for analyzing, capitalizing on, and sharing threat intelligence data. Seeing VIGINUM leverage OpenCTI to improve the of exchanges and bolster the understanding of the threat landscape is incredibly rewarding.

🤝 A huge thank you to VIGINUM for choosing as a foundational tool in their mission to protect against digital manipulation.

👀 Read more about VIGINUM's doctrine here: https://github.com/VIGINUM-FR/Doctrine-OpenCTI/tree/main

github.com

🚀 Introducing advanced filtering possibilities in , our new blog article written by Cathia Archidoit, Jean-Philippe Kha and Laurent Bonnet, Software Engineers at Filigran!

CTI databases are complex, and cyber analysts need precise data targeting capabilities. has been a game-changer, but its filtering capabilities were due for a significant upgrade.
The latest OpenCTI 5.12 release brings a revolution in filtering possibilities, empowering to navigate vast datasets effortlessly.

🆕 What's New in OpenCTI 5.12:
1️⃣ More Operators
2️⃣ And/Or Mode Switching
3️⃣ Inter-Dependent Filters

👀 Read more about these features and what's next for OpenCTI: https://blog.filigran.io/introducing-advanced-filtering-possibilities-in-opencti-552147565faf

Introducing advanced filtering possibilities in OpenCTI CTI databases are usually vast and made of complex, inter-dependent objects ingested from various sources. In this challenging context…