IronNet Launches IronRadar to Automatically Block Adversary Infrastructure

IronNet, Inc. | September 30, 2022 | Read time : 02:50 min

IronNet, Inc.
IronNet, Inc., an innovative leader Transforming Cybersecurity Through Collective DefenseSM, has launched IronRadarSM, a new solution designed to proactively and automatically update customers’ cybersecurity tools with malicious indicators for adversary infrastructure.

Developed by IronNet’s team of elite threat hunters, IronRadar uses an innovative process that fingerprints a server and determines whether it is a command and control (C2) server while those servers are being stood up, even before a cyber attack is initiated. IronRadar enriches the data creating purpose-built intelligence updates for proactively blocking adversarial infrastructure, and was observed to have 98% accuracy over six months of testing.

“We know that Cobalt Strike and other open-source tools provide the framework for legitimate ‘red team’ activities. “Unfortunately, open-source tools are being used by advanced persistent threat groups to gain access to systems, establish C2, and launch attacks. Thanks to our innovative and dedicated CyOC team, IronRadar can identify threats as new adversarial infrastructure servers appear and before they can be used in sophisticated cyber attacks.”

Don Closser, Chief Product Officer of IronNet

IronRadar is now available for all networks beyond the IronNet Collective DefenseSM platform community as an annual subscription – sold directly from the Amazon Web Services (AWS) Marketplace makes it cost effective and easy to buy and scale. Once installed, customers can easily upgrade to join the Collective Defense community at any time.

“Detecting weaponized C2 servers before they connect to a network and inflict damage like ransomware and eCrimes is a daunting challenge for all organizations,” said Christopher Kissel, Research Vice President of Security and Trust Products, at IDC. “The launch of the purpose-built threat intelligence feed from IronNet is a game changer because it proactively blocks known, new, and unreported C2 infrastructures.”

IronRadar is the only existing automated threat intelligence feed developed specifically to combat C2 behavior. This easy-to-use tool enables a customer’s SOC to:

  • Actively block known C2 and emerging threat C2 IoCs.
  • Integrate real-time threat intelligence into any security solution – SIEM, SOAR, Incident Response, and more.
  • Accelerate threat response by exposing the adversaries and evolving tradecraft targeting infrastructure.

IronRadar integrates seamlessly with the IronNet Collective Defense platform, powered by AWS, which is the only solution that can identify anomalous behaviors and deliver actionable attack intelligence to all the other participants in the IronNet community. The Collective Defense platform serves as an early warning system for all participating companies and organizations, strengthening network security through correlated alerts, automated triage, and extended hunt support.

About IronNet, Inc.
Founded in 2014 by GEN Keith Alexander, IronNet, Inc. is a global cybersecurity leader that is transforming how organizations secure their networks by delivering the first-ever Collective Defense platform operating at scale. Employing a number of former NSA cybersecurity operators with offensive and defensive cyber experience, IronNet integrates deep tradecraft knowledge into its industry-leading products to solve the most challenging cyber problems facing the world today.


Meet the productivity platform your team needs In today’s digital world, businesses need fast and efficient ways to connect with customers and teammates. They need a productivity platform designed to foster collaboration and real-time communication. That’s where Slack comes in. With Slack as their productivity platform, business


Meet the productivity platform your team needs In today’s digital world, businesses need fast and efficient ways to connect with customers and teammates. They need a productivity platform designed to foster collaboration and real-time communication. That’s where Slack comes in. With Slack as their productivity platform, business

Related News


atNorth Announces BNP Paribas Relocating a Portion of IT Infrastructure to Nordic Region

hpcwire | April 03, 2023

atNorth, a leading pan-Nordic colocation, high-performance computing, and artificial intelligence service provider, has announced that its long standing customer, BNP Paribas, continues to move portions of their workloads to the Nordic region. This will enable the leading financial institution to continue to support the increasing need for high performance, data-intensive IT workloads. The migration of another portion of its IT workload to the atNorth site in Sweden is a continuation of BNP Paribas’ program to refresh and expand its High-Performance Computing HPC server farm – a vital hub for applications used to calculate the positions and associated risks in the financial markets – to atNorth’s Nordics datacenters. The original move to Iceland in 2018 resulted in an increase of nearly 30% in total capacity, reduced energy consumption by more than 50%, and decreased CO2 output by 85%. By moving additional workloads to the atNorth site in Sweden, BNP Paribas demonstrates continued commitment to sustainably future proof its IT infrastructure and reduce its carbon footprint across the whole of the global business “atNorth has been instrumental in helping BNP Paribas ensure our IT operations are as sustainable and carbon neutral as possible, which is an initiative close to the core of our business at the moment,” stated Alexis Carrion, CIB Global Head of Data Centers, BNP Paribas. ​“We have seen great results from migrating IT workloads to atNorth’s data center site in Iceland five years ago. As we look to increase our grid computing capacity, the atNorth site is the obvious solution in meeting both demand as well as our guiding principles for sustainability and efficiency. atNorth meets all our criteria and importantly are an operational partner that we know and trust to help us to advance our best practices to reduce the digital footprint of our IT infrastructure and operations.” atNorth’s data center in Sweden, is built for heat recovery, and is considered one of the country’s most energy efficient data centers. The data center is designed to operate with the lowest carbon footprint possible. The site can capture the heat from up to 85 percent of the electricity used within the center, which is passed on to the central district heating system to provide heat and hot water for the surrounding community. This innovative use of large-scale heat reuse exemplifies a new generation of data center design and contributes to the circular economy. “Our partnership with BNP Paribas is very well aligned with atNorth’s mission of providing environmentally responsible compute facilities at scale, BNP Paribas has with this new project yet again demonstrated their leadership in lowering their environmental impact and emphasis on responsible IT deployments. Through the years BNP Paribas has showcased that focus on sustainability amplifies best practices and has resulted in the best outcome for the environment and their business. BNP Paribas has been an early mover in its ambition to put sustainability and carbon neutrality at the forefront of its business and we are excited to help the team expand their operations to the atNorth site in Stockholm,” commented Gisli Kr., CSO atNorth. ​“Sweden’s climate and renewable energy resources, combined with atNorth’s innovative cooling and large-scale reuse of heat is now attracting European companies who want to reduce their CO2 footprint. BNP Paribas has proven to be an organization that is truly paving the way for business today, demonstrating the critical role that global leaders can play in creating a more sustainable future as we continue to fuel a digitally data-hungry world.” About atNorth atNorth is a leading Pan-Nordic data center services company that offers sustainable, cost-effective, and scalable colocation and high-performance computing services across Iceland, Sweden and Finland. The company operates five data centers in strategic locations across the Nordics, with a sixth site to open in Akureyri, Iceland in Q2, 2023 and a seventh site to open in Finland in 2024. With sustainability at its core, atNorth’s data centers run on 100% renewable energy resources and support circular economy principles. All atNorth sites leverage innovative design, power efficiency, and intelligent operations to provide long-term infrastructure and flexible colocation deployments.

Read More


Pulumi Launches ‘Pulumi Insights’ – Intelligence for Infrastructure as Code

businesswire | April 17, 2023

Pulumi, makers of the fastest-growing infrastructure as code product, today announced Pulumi Insights, a breakthrough innovation that brings intelligent infrastructure as code to every engineer’s fingertips. Pulumi Insights unlocks analytics and search across cloud infrastructure, generates infrastructure as code from natural language prompts, and even enables novel AI-driven infrastructure automation. The end result is tremendous gains in engineering productivity – an area in which Pulumi is already best in class – while also helping teams better understand and control their cloud usage patterns. Pulumi Insights works with infrastructure provisioned by other tools in addition to infrastructure under management using Pulumi, and integrates with industry-leading data platforms. As companies rely on more cloud resources across an increasing number of infrastructure and managed service providers, it becomes all the more difficult to locate, manage, and track resources across organizations, teams, and projects,” said Kelly Fitzpatrick, Senior Industry Analyst at RedMonk. “Often, this results in the infrastructure layer working as a bottleneck that increases the lead time from ideation to delivery. Pulumi aims to address these issues by providing tools and processes designed to enable companies to analyze infrastructure as code resources and apply that knowledge to cost control, forecasting, security, and compliance.” Search – Find Anything in Any Cloud Pulumi Insights lets engineers ask any question about their infrastructure across more than 100 clouds, using either structured search queries or natural language prompts. Supported clouds include public clouds like AWS, Microsoft Azure, and Google Cloud; cloud native technologies like Kubernetes, Helm, and VMWare; and SaaS infrastructure like Snowflake, Cloudflare, and MongoDB. Search helps engineers find that needle in the haystack – locating a single resource across many clouds and environments – as well as running sophisticated queries such as tracking down untagged or expensive resources across the whole organization. Search facets highlight the most used clouds and resources, broken down by project and environment, helping teams quickly understand more about the infrastructure they manage. Analytics – Gain Deeper Insights into Cloud Infrastructure Pulumi Insights includes new out-of-the-box dashboards and analytics, enabling engineers to gain rich insights over their own organization’s cloud infrastructure. A REST API can be used to programmatically query and add automation around search results, or to integrate with internal platforms and dashboards. Data export to other data warehouses including Snowflake, Amazon Redshift, Google BigQuery and Azure Synapse unlocks integration with other data and analytics platforms, enabling teams to build custom dashboards using the data tools they know and love. These capabilities can be used to identify anomalies or trends in resource usage, and dig into cost, security and compliance concerns. Intelligent Infrastructure as Code – Be More Productive with the Power of AI Pulumi Insights embeds new AI capabilities throughout the Pulumi platform. Pulumi deeply understands usage patterns and can deliver recommendations or even generate infrastructure as code automatically. Pulumi’s Automation API – a unique approach that embeds infrastructure as code into larger software programs – lets AI go beyond simply generating content to enable advanced automation. A new companion website and command-line tool leverages large language models (LLMs) to author infrastructure as code for any architecture for any cloud in any language. Thanks to Pulumi’s unique approach of employing infrastructure as code in any programming language, industry tools like GitHub CoPilot and OpenAI ChatGPT already deliver superior support for Pulumi. Pulumi Insights builds upon Pulumi’s flagship infrastructure as code technology which supports any programming language, and delivers semantic understanding across a connected graph of infrastructure on any cloud. Because over 2/3rds of Pulumi’s community, and 99% of its customers use Pulumi Cloud, this uniquely unlocks search, insights, and deep learning across over 1 petabyte of cloud usage data. “With Pulumi Insights, we now have the industry’s smartest infrastructure as code,” said Joe Duffy, Founder and CEO of Pulumi. “This is yet another step-function boost to infrastructure productivity. Leveraging cloud infrastructure to deliver innovation, intelligence, and business impact has never been easier. This is an inflection point for infrastructure as code and there is so much more to come.” About Pulumi Pulumi lets engineers deliver infrastructure as code faster, using any programming language. The Pulumi Platform enables customers to manage 10x more resources at lower cost than traditional tools, while Pulumi Insights unlocks analytics and search across cloud infrastructure, and enables novel AI-driven infrastructure automation.

Read More


DISA Modernizes Wireless Networks and Access Management, Across All Classification Levels, With HPE Aruba Networking Infrastructure

businesswire | April 13, 2023

Hewlett Packard Enterprise today announced that the Defense Information Systems Agency (DISA), a combat support agency of the United State Department of Defense (DoD) headquartered in Fort Meade, MD, is modernizing and securing multi-class wireless networks with HPE Aruba Networking ESP (Edge Services Platform) solutions. As part of DISA’s digital transformation strategy under the Fourth Estate Network Optimization (4ENO) initiative, the deployment will include HPE Aruba Networking Wi-Fi 6 Access Points (APs) and HPE Aruba Networking ClearPass in support of approximately 400,000 DoD users and warfighters worldwide. The 4ENO initiative includes an upgrade to a unified HPE Aruba Networking wireless infrastructure and new security capabilities at DISA Headquarters, for 4th Estate Agencies, and across DISA’s new DoDNet. The 4th Estate is a group of approximately two dozen DoD agencies that support the armed services and intelligence communities. DoDNet will provide secure as-a-service networking, IT systems, and business applications to participating 4th Estate agencies in support of DISA’s vision for establishing a single digital enterprise. To enable its desired outcomes for reducing complexity and increasing interoperability with open standards-based technologies, DISA selected HPE Aruba Networking Wi-Fi 6 APs to be deployed at its Headquarters. HPE Aruba Networking’s advanced Wi-Fi 6 capabilities will provide DISA employees, mission partners, and guests with secure, high-performance connectivity. The deployment also supplies an enterprise-wide unified user experience for mobile, IoT, and operational technology (OT) devices across numerous business applications, including Microsoft 365 and other information systems. Adopting Wi-Fi 6 enables DISA to fortify a Zero-Trust posture with built-in security capabilities such as Wi-Fi Protected Access 3 (WPA3) for improved password and guest access protections. Looking ahead, DISA also gains the future capability to establish seamless and secure transitions from 5G cellular networks onto internal classified and unclassified networks. As the DoD’s information services provider, DISA is also deploying a secure HPE Aruba Networking WLAN for DoDNet, including HPE Aruba Networking Wi-Fi 6 and HPE Aruba Networking ClearPass. This will enable DoDNet to provide unified, streamlined, and secure wireless access for government furnished equipment (GFE) across all classification levels. The HPE Aruba Networking technology delivers device visibility, policy control, workflow automation, and cybersecurity threat response, all in one cohesive solution that provides built-in Zero Trust security. About Hewlett Packard Enterprise Hewlett Packard Enterprise (NYSE: HPE) is the global edge-to-cloud company that helps organizations accelerate outcomes by unlocking value from all of their data, everywhere. Built on decades of reimagining the future and innovating to advance the way people live and work, HPE delivers unique, open, and intelligent technology solutions as a service. With offerings spanning Cloud Services, Compute, High Performance Computing & AI, Intelligent Edge, Software, and Storage, HPE provides a consistent experience across all clouds and edges, helping customers develop new business models, engage in new ways, and increase operational performance.

Read More