F500 Insurance Company: Scaling File Analysis Workflows with Spectra Analyze
A leading insurance and financial services company selected ReversingLabs Spectra Analyze to enhance its existing SOC workflows for malware detection.
Not only were they looking for deeper file analysis capabilities, but also to effectively scale the volume of files analyzed.
File Unpacking and Classification
One of the capabilities that stood out for the company was Spectra Analyze’s ability to automatically unpack and classify files at higher volumes and speeds, allowing them to greatly scale their processes.
Not only were they able to increase operational efficiencies in the SOC, but they also improved their threat detection efficacy and overcame existing classification issues they were experiencing with other tools.
IoC Attribution, Expansion, Pivoting, and Threat Detection
They also placed great importance on gathering intelligence around attacker infrastructure associated with threats experienced within their organization. This intelligence is used by multiple teams, including the CTI team, security analysts, CSIRT, detection engineers, and Red Team members.
Spectra Analyze enabled them to identify additional threat leads through the purposeful intersection of local intelligence with select global data sets from ReversingLabs' industry-leading threat data repository, helping build a robust picture of threats the organization is or could be facing in the future.
Privacy
Given their business and the sensitive nature of the data they handle, privacy is of the utmost importance.
This is another reason they chose ReversingLabs, as each solution is built with the highest levels of privacy and trust. Spectra Analyze provides privacy by default, including private file analysis, a private datastore, and customer-controlled sharing options.
