Brand-monitoring, reputation and risk-assessment in one tool.
November 22, 2019
Brand-monitoring, reputation and risk-assessment in one tool.
Score 9 out of 10
Vetted Review
Verified User
Overall Satisfaction with Recorded Future
We mainly use RF for our brand-monitoring, to maintain our reputation and for monitoring partner companies. They offer scanning of a wide range of the internet, be it public sources like various pastebins, github, or social media, as well as forums on the darknet. This helps identifying if any company assets have been leaked (by employees unintentionally as well as through potential fraudsters). Additionally it helps us with identifying the severity of vulnerabilities by assessing how many POCs are available or how often certain vulnerabilities are mentioned in related channels.
- Everything they find is also available in their own cache. So for example if a pastebin expired, you can still view it later on.
- The risk score of vulnerabilities shows actual malicious activity. Image the CVS-Score is medium, but there is a lot of exploit chatter, you want to prioritize fixing this vulnerability.
- Their watchlists are easy to set up and offer monitoring your tech-stack, peers, persons of special interest, etc.
- E-Mail reports can show unrelated content, especially sometimes you'll see alerts popping up for articles which have been published years ago but for some reason were just recently discovered by RF.
- Yara rules from their insikt blog sometimes are not syntactically correct and need to be manually edited to actually work. There's some proper QA missing.
- Their global and 3rd party risk reports could be more tailored towards the industries of their client. There is entries for totally unrelated security incidents. Of course a global list aims to find incidents on a global view, but it doesn't add much value at that point.
- We've been able to identify leaked credentials and close those accounts off.
- We've also been able to identify malware being distributed or spam being sent out by customers using our infrastructure. Again we could shut off those accounts.
- Their domain-monitoring allows us to identify typo-squats and issue domain-takedowns for those (or at least add them to our monitoring / detection)
Can't disclose those here unfortunately.
Do you think Recorded Future Intelligence Cloud delivers good value for the price?
Yes
Are you happy with Recorded Future Intelligence Cloud's feature set?
Yes
Did Recorded Future Intelligence Cloud live up to sales and marketing promises?
Yes
Did implementation of Recorded Future Intelligence Cloud go as expected?
Yes
Would you buy Recorded Future Intelligence Cloud again?
Yes