Question 1

What Types of Events Are the Biggest Threats to Brands?

Accepted Answer

Rogue threats are not in the purview of traditional security controls and can wreak havoc without security teams ever knowing about them. RiskIQ brand protection tackles the six leading rogue threats that affect businesses:

Phishing: Sites that impersonate an organization to phish their users, customers, prospects, or partners.
Domain Infringement: Third party owned domain and subdomain names that contain or are confusingly similar to an organization's official domains and brand names.
Rogue Mobile Apps: Mobile apps impersonating or claiming false affiliation with a brand, official applications reported in unauthorized app stores, or apps containing mobile malware targeting the organization's official app users.
Social Media Impersonation: Social media accounts impersonating an organization on Facebook, Twitter, LinkedIn, Instagram, YouTube, and Pinterest.
Brand-Lure Malware: Use of official branding such as product names or logos in pages delivering malware.
Data-Leakage: Stolen customer data, such as credit card information, as well as other leaked company data, including employee emails or internal data, posted in the open web, offered for sale, or otherwise made available to third parties outside the organization.

Question 2

How do you Discover and Eliminate Brand Impersonation?

Accepted Answer

The frequency of brand attacks can overwhelm security teams. Our global network of virtual users use a combination of threat feeds and configured searches for brand keywords to encounter threats, including Phishing, Domain Infringement, Rogue Mobile Apps, Social Media Impersonation, and Brand-Lure Malware, the same way that victims do. Virtual users closely mimic human behavior in the way they navigate websites and use a broad range of geographic locations, OS and browser-types, and other characteristics to catch targeted attacks by threat actors trying to evade detection.

Question 3

Why Is It Important To Unify Intelligence?

Accepted Answer

Security teams need to gain visibility over their digital footprint to extend protection to their public-facing assets in order to optimize their detection of threats and intelligently differentiate between legitimate assets and rogue sites, apps, or social profiles that pose a risk to the organization. External Threats automatically maps organizations’ attack surface in order to leverage that information to drive accurate and comprehensive detection and monitoring of brand impersonation, abuse, and data leaks.

Question 4

How Do You Pinpoint Data Leaks and Abuse?

Accepted Answer

Virtual users use a combination of API integrations and virtual user searches to detect stolen customer data, such as credit card information, leaked employee credentials, or other leaked company data. RiskIQ’s flexible policy framework and fine-grained controls also enable powerful detection customization and searching for other brand abuse threats, such as scams tailored to an organization’s industry, region, or other relevant business context.

Question 5

How Can We Act Fast in Mitigating and Takedown of Our Threats?

Accepted Answer

A solution that offers mitigation as a part of their service is a vital resource enabling you to quickly act when facing a brand threat. A web interface option with API access available to companies and their support teams is extremely handy when investigating detected events. In-app mitigation workflow, along with continuous monitoring of online resources, lets companies quickly take action, know when threats have been successfully remediated, and track event lifecycle metrics to report on threat response efficiency.

RiskIQ Illuminate® Internet Intelligence Platform Datasheet

Five Security Intelligence Must-Haves For Next-Gen Attack Surface Management

5-Questions Security Intelligence Must Answer

Threat Investigations and Response RiskIQ Solution Brief

Illuminate One-Hour On-Demand Event