Advanced Threat Landscape Analysis System (ATLAS) data is aggregated from various Trellix data sources to provide the latest global emerging threats with enriched data such as industry sector and geolocation. ATLAS correlates these threats with campaign data containing research from Trellix’s Advanced research Center (ARC) and Threat Intelligence Group (TIG), as well as open-source data, to provide a dedicated view for campaigns consisting of events, dates, threat actors, IOCs, and more.
Harnessing the strength of both enterprise resources and the cloud, Trellix provides a hybrid environment that significantly enhances threat intelligence. Through our private cloud and single-tenant-dedicated environment, organizations can securely tap into our threat intelligence solutions, enabling the efficient sharing of critical information across the enterprise. Trellix offers both on-premises and off-premises cloud services, empowering your organization to deploy global or regional cloud services as needed, aligning to your specific requirements.
In this digital age, the integration of various data sources is crucial in building an effective threat intelligence system. Our ATLAS platform collects and aggregates data from diverse Trellix sources. The data is further enriched with crucial details like industry sector and geolocation, offering an up-to-date, global view of emerging threats.
ATLAS includes several standard dashboards for indicators of compromise (IOCs), threat actors and campaigns. Dashboards vary slightly from one another but share similar design elements, visualizations, and workflows.
Click on Campaign Threats in the menu to view the latest intelligence from our team of industry-leading researchers. The campaign dashboard collates the latest analysis of thousands of emerging threats into one location. Here you will find cutting-edge research from Trellix specialists, as well as open-source intelligence from around the world. Campaign data is imported from Trellix’s backend intelligence platform MISP. As part of this process, ATLAS automatically enriches our prevalence data with campaign IOCs.
The vulnerability dashboard collates the analysis of the latest high impact vulnerabilities. The analysis and triage are performed by the Advanced Research Center’s industry experts on vulnerabilities. These researchers, who specialize in reverse engineering and vulnerability analysis, continuously monitor the latest vulnerabilities and how threat actors are utilizing these in their attacks to provide remediation guidance. This concise and highly technical expert advice allows you to filter the signal from the noise and to focus on the most impactful vulnerabilities that can affect your organization allowing you to react faster.
ATLAS Detections Dashboards include several visualization types for prevalence of malicious IP addresses, files, and URLs that empower customers with comprehensive situational awareness of the global threat landscape.
Within the menu dropdown labelled Trellix Detections are links to the prevalence dashboards. Each of these dashboards is dedicated to one class of IOC and are populated daily with detections from the full range of Trellix products.
Within each prevalence dashboard you will find:
Includes malicious file hash detections in MD5 and SHA256 formats. Each hash is classified by reputation and trust score.
Includes detections of client interactions with malicious domains, hosts, and URLs. Detections are further categorized by risk, site function, and any malicious files that they deploy.
A catalog of attempted connections to known malicious IP addresses.
Global View Dashboard
Prevalence Dashboard
Campaigns Dashboard
Our team of experts is ready to help you find the perfect solution for your business needs. Get personalized advice and competitive quotes.
We're here to help with any questions
