Cyware, a provider of AI-powered threat intelligence management, has expanded its Cyware Intelligence Suite to offer enhanced capabilities for operationalizing threat intelligence and improving organizational security posture. The suite consolidates threat management capabilities into a streamlined workflow.

The Cyware Intelligence Suite aims to address the complexities associated with launching and maintaining a Cyber Threat Intelligence (CTI) program by simplifying deployment, enrichment, and operationalization. Built on Cyware Intel Exchange, the solution now incorporates three new components: Cyware Sandbox Service, Cyware Sectoral Feeds, and Domain Sightings. These additions complement existing features such as Compromised Credential Management, Team Cymru Threat Feeds, and a collection of pre-configured integrations, tags, rules, and searches.

Sachin Jade, Chief Product Officer at Cyware, stated, “The Cyware Intelligence Suite, combined with Cyware Intel Exchange, forms a pre-configured, modular, and end-to-end automated threat intelligence operationalization solution. Now with native sandboxing, curated industry-focused intelligence feeds, and domain sightings, teams can proactively analyze artifacts, understand malware behavior, investigate domain-based threats, and apply highly contextual indicators to their security operations without waiting for custom setups or tool integrations.”

Key new capabilities include:

* **Cyware Sandbox Service:** This service enables analysts to detonate suspicious files and URLs within a secure, private environment. It retrieves detailed behavioral and static analysis, directly enriching threat intelligence within Cyware Intel Exchange. This offers advanced visibility into malware behavior, facilitates threat context and campaign correlation, and ensures private-by-design sandboxing.
* **Cyware Sectoral Feeds:** These feeds provide a continuous stream of daily, enriched sector-specific malware intelligence. Powered by multi-source threat analysis and sandbox correlation, they deliver curated intelligence, accelerate the transition from Indicators of Compromise (IOCs) to insights, and enable sectoral threat prioritization. Current sectors include healthcare, finance, energy, government, manufacturing, and operational technology.
* **Domain Sightings:** Integrated into Exposure Management, this module automates the monitoring and investigation of domain mentions across dark web forums and cybercrime marketplaces. It offers screenshot previews with threat context and correlation with existing IOCs and campaigns, providing visibility into dark web threats without exposing analysts to the Tor network, along with actionable context.

Chris Steffen, Vice President Research at Enterprise Management Associates, commented, “Cyware has formed a unique solution blending advanced threat intelligence processing with compromised credential management, malware detonation sandbox, and domain sightings. This collection of capabilities streamlines traditionally disparate functions into an end-to-end threat management system that helps accelerate response measures.”

Cyware specializes in operationalized threat intelligence and collective defense, assisting security teams in transforming threat intelligence from fragmented data points into actionable, real-time decisions. The company unifies threat intelligence management, intelligence sharing and collaboration, and hyper-orchestration and automation to eliminate silos and enable organizations to counter adversaries more effectively. Cyware supports various organizations, including enterprises, government agencies, and ISACs, in converting intelligence into impact.