LEO's Cyber Threat Intelligence Services



Functional Components Description

Leonardo’s Threat Intelligence Services include three sets of functionalities that can be selected according to customer’s context and requirements.

Each set is configurable into single services designed to operate in specific application scenarios, in cloud or on premises, depending on the operating context:

  • Cyber Threat Intelligence: detects new vulnerabilities, cyber-attacks being prepared and information illegally stolen from companies and organisations posted on the Internet, through the continuous monitoring of web and darknet sources and the realtime analysis of huge amounts of data searching for possible clues.

  • Social and Security Threat Intelligence: acquires, analyses and correlates information on open sources in order to offer a complete overview of the online sentiment related to socio political events. This contributes to improve the awareness of imminent potential threats against the customers’ assets.

  • Fraud Detection Threat Intelligence: prevents internet frauds relevant to phishing campaigns, domain hijacking and theft of digital identities through the continuous monitoring of web and darknet sources aimed at identifying attackers and improving the customers’ ability to protect themselves against internet frauds.


Services provided

The customer can choose, according to the specific sector and its peculiar needs and requirements, to install a Leonardo Threat Intelligence system on premises and to include, in addition to the design & build of the solution, also on site ongoing support provided by Leonardo (on premises model).

Selecting the full-outsourcing model, the customer can decide to use a subset of services with pre-configured functions based on specific application scenarios of interest and receive automatic reports that can be used without the support of analysts.

Customers can also decide to implement the system at their premises and simultaneously make use of Leonardo’s infrastructure only for those services that require high computing capacity without facing additional costs (hybrid model).

Leonardo’s Threat Intelligence on-premises model is better suited to the needs of Law Enforcement and Intelligence Agencies for counter terrorism activities and for the support of investigation and crime preventing activities.

On the contrary, hybrid or remote models, best meet protection and cyber resilience needs of critical infrastructures and multi-national strategic enterprises with international networks.


Keywords

Vulnerability detection, attack detection, monitoring, Darknet, real-time analysis, Fraud detection


Services

  • Cyber Threat Intelligence: detects new vulnerabilities, cyber-attacks being prepared and information illegally stolen from companies and organisations posted on the Internet, through the continuous monitoring of web and darknet sources and the realtime analysis of huge amounts of data searching for possible clues.

  • Social and Security Threat Intelligence: acquires, analyses and correlates information on open sources in order to offer a complete overview of the online sentiment related to socio political events. This contributes to improve the awareness of imminent potential threats against the customers’ assets.

  • Fraud Detection Threat Intelligence: prevents internet frauds relevant to phishing campaigns, domain hijacking and theft of digital identities through the continuous monitoring of web and darknet sources aimed at identifying attackers and improving the customers’ ability to protect themselves against internet frauds.


Technical equipment

HPC: 500 TFlops High performance computing resources elaborating 500,000 bln operations every second


Use request

-