June 20, 2017 By Bob Stasio 2 min read

On June 20, the lives of cyberanalysts and threat hunters who use QRadar and IBM i2 Analyst’s Notebook are about to get a whole lot easier. A new app, IBM i2 QRadar Offense Investigator, enables QRadar users to push alerts and incident data directly to IBM i2 Analyst’s Notebook (version 9.0.6 or later) for in-depth visual analysis.

IBM i2 Analyst’s Notebook provides a rich, multidimensional visual analysis environment that empowers users to uncover hidden patterns and connections buried in disparate data sets. It features mathematical modeling that allows users to conduct temporal, histogram, geospatial and social network analysis across structured and unstructured data to uncover insightful trends about threats, threat actors and vulnerabilities.

By pushing QRadar network incident and alert data into i2 Analyst’s Notebook, IBM i2 QRadar Offense Investigator app users can proactively analyze that event data along with non-network data, such as HR, Dark Web and open source data. Combining these disparate data sets allows analysts to correlate seemingly unrelated events and details, creating a comprehensive understanding of the threat — and the threat actor — so they can quickly determine how to mitigate it.

Today’s determined cybercriminals will outsmart your security. Download the IBM i2 QRadar Offense Investigator app to put them on the defense.

Not yet an i2 user and want to experience the power of QRadar and i2? Visit the App Exchange and request a free evaluation license.

Watch the on-demand webinar to learn more about IBM i2 QRadar Offense Investigator

More from

CISA hit by hackers, key systems taken offline

3 min read - The Cybersecurity and Infrastructure Security Agency (CISA) — responsible for cybersecurity and infrastructure protection across all levels of the United States government — has been hacked.“About a month ago, CISA identified activity indicating the exploitation of vulnerabilities in Ivanti products the agency uses,” a CISA spokesperson announced.In late February, CISA had already issued a warning that cyber threat actors are exploiting previously identified vulnerabilities in Ivanti Connect Secure and Ivanti Policy Secure gateways. Ivanti Connect Secure is a widely deployed…

Cloud security evolution: Years of progress and challenges

7 min read - Over a decade since its advent, cloud computing continues to enable organizational agility through scalability, efficiency and resilience. As clients shift from early experiments to strategic workloads, persistent security gaps demand urgent attention even as providers expand infrastructure safeguards.The prevalence of cloud-native services has grown exponentially over the past decade, with cloud providers consistently introducing a multitude of new services at an impressive pace. Now, the contemporary cloud environment is not only larger but also more diverse. Unfortunately, that size…

PixPirate: The Brazilian financial malware you can’t see

10 min read - Malicious software always aims to stay hidden, making itself invisible so the victims can’t detect it. The constantly mutating PixPirate malware has taken that strategy to a new extreme. PixPirate is a sophisticated financial remote access trojan (RAT) malware that heavily utilizes anti-research techniques. This malware’s infection vector is based on two malicious apps: a downloader and a droppee. Operating together, these two apps communicate with each other to execute the fraud. So far, IBM Trusteer researchers have observed this…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today