Lumen Technologies (NYSE: LUMN) has announced the availability of Lumen Defender Managed Rules for AWS Network Firewall in AWS Marketplace, making its Black Lotus Labs threat intelligence directly accessible to Amazon Web Services (AWS) customers to enhance cloud protection.

This new offering is designed to provide proactive defense against cyberattacks by leveraging Lumen’s global network threat intelligence upstream, enabling enterprises to detect and block malicious activity before it impacts their systems. The solution integrates Black Lotus Labs’ insights, derived from extensive network visibility, directly into AWS Network Firewall, eliminating the need for additional infrastructure or complexity.

Martin Nystrom, Vice President of Black Lotus Labs and Product Security at Lumen, stated that as cyber threats become more automated and distributed, organizations require visibility extending beyond their immediate perimeters. He emphasized that Lumen’s deeply connected global network allows its Defender threat intelligence to offer an upstream view into malicious infrastructure before it targets customers. This integration into AWS Network Firewall is intended to facilitate earlier detection and disruption of botnets, malware, and nation-state activities, thereby strengthening defenses at the network edge.

Lumen Defender Managed Rules is offered as a Managed Rule group within AWS Marketplace. Customers can subscribe to this rule group and automatically apply it to their firewalls directly from the AWS Network Firewall console, integrating real-time threat data to safeguard critical cloud deployments.

The initiative addresses common limitations in existing security tools, which often detect threats only at the point of intrusion and typically lack visibility into external threat infrastructure. This can delay the identification of emerging attacks and increase risks to enterprise assets, customer data, and operational continuity. Lumen aims to shift defense from reactive to proactive by fulfilling key requirements: global threat landscape visibility, timely intelligence for pre-breach action, high-confidence signals to minimize false positives, and actionable context on indicators of compromise.

Black Lotus Labs, Lumen’s dedicated threat research arm, provides high-level network visibility by processing over 200 billion NetFlow sessions daily from the global IP backbone. The research team employs methods such as malware reverse engineering, AI/ML-driven anomaly detection, and botnet infrastructure mapping to identify and disrupt threats before they reach customer environments. This intelligence has previously supported takedowns of advanced persistent threats and criminal proxy networks.

Through Lumen Defender Managed Rules for AWS Network Firewall, customers can block threats earlier in the cyber kill chain using curated rules derived from Lumen’s backbone-level visibility. The service also aims to accelerate deployment and reduce overhead with continuously updated rules delivered via AWS. Furthermore, it provides enriched indicators, including severity and threat categories, to minimize false positives and enable a focused security response.