Flashpoint Security Software: Product Overview and Insight

PRODUCT OVERVIEW: Security startup Flashpoint provides Business Risk Intelligence (BRI) software and services in a cloud-available, subscription package.


eWEEK is building a new IT products and services section that encompasses most of the categories that we cover on our site. In it, we will spotlight the leaders in each sector, which include enterprise software, hardware, security, on-premises-based systems and cloud services. We also will add promising new companies as they come into the market.

Today: Flashpoint Business Risk Intelligence (BRI)

Company Name: Flashpoint; go here to see overall company description and overview of the product line.

Description: Flashpoint delivers Business Risk Intelligence (BRI) to empower business units and functions across organizations with a decision advantage over potential threats and adversaries. The company’s sophisticated technology and human-powered analysis enable enterprises and public sector organizations globally to bolster cybersecurity, confront fraud, detect insider threats, enhance physical security, assess M&A opportunities, and address vendor risk and supply chain integrity.

Markets: Flashpoint’s key markets include North America and Europe, with market expansion efforts underway in Asia Pacific and Latin America.

Product Description & Key Features:

Flashpoint Datasets: Flashpoint’s Business Risk Intelligence and technology offerings are fueled by the company’s highly curated datasets, which include:

Finished Intelligence: The Finished Intelligence dataset provides access to the analytical reports produced by Flashpoint’s subject matter experts. These human-digestible intelligence reports cover a wide spectrum of illicit, underground activity, from cybercrime and hacking, to fraud, emergent malware, DDoS intelligence, hacktivism, violent extremism, and physical threats.

Deep & Dark Web (DDW): The DDW dataset provides access to Flashpoint’s extensive historical archive of signal-rich discussions from DDW threat actor communities and marketplaces. This data enables users to leverage the DDW safely and to supplement their internal data with targeted data from highly curated sources, thereby providing users with a strategic advantage over adversaries.

Risk Intelligence Observables (RIOs): The RIOs dataset provides a high-fidelity feed of cyber observables that customers can integrate with their security operations to attain a decision advantage. RIOs enrich user data with additional context, empowering customers to better understand and mitigate risks.

Flashpoint Intelligence Platform: The Flashpoint Intelligence Platform grants access to the company’s expansive archive of Finished Intelligence reports, DDW data, and RIOs in a single, finished intelligence experience. Key features include:

Finished Intelligence Experience: Access Flashpoint’s finished intelligence reports and the original primary source data the company’s experts use to create those reports. Not only will customers save time and resources in monitoring the Deep & Dark Web, but their organizations will also be better informed and protected without taking on any additional risk.

Deep & Dark Web Search: Users can universally search across all of Flashpoint’s DDW data and run the same searches the company’s analysts do for their investigations. This access empowers users to investigate the DDW safely and gain greater context around any information they might need to draw their own conclusions.

Intuitive Pivoting: This feature enables users to browse or search Flashpoint’s intelligence reports and then click directly into a sanitized copy of the original threat actor conversation. As a result, users can assess emerging threats, vulnerabilities, and potential impacts to accurately assess risk and make more informed decisions according to business needs.

Flashpoint API: The Flashpoint API provides near real-time access to the company’s Finished Intelligence, normalized data from Deep & Dark Web threat actor communities, and Risk Intelligence Observables. By integrating into end-users existing systems and supporting Technology Partner integrations, the API enables customers to enhance their internal data with Flashpoint’s data acquired from highly curated sources. Key features include:

  • Near real-time access to Finished Intelligence, Deep & Dark Web data, and Risk Intelligence Observables datasets
  • Intuitive, easy to use developer tools powered by OpenAPI
  • Targeted data acquired by world class subject matter experts
  • RESTful access to expansive historic Deep & Dark Web data archive
  • Flexible filtering and search operators with extraction in industry-preferred JSON format

Flashpoint Collaboration (FP Collab): Exclusively comprising Flashpoint customers and team members, FPCollab is an information-sharing community that equips its more than 1,000 members with trusted, timely insights and live communication to facilitate more effective decisions around risk.

Flashpoint Requests for Information (RFIs): The RFI offering enables Flashpoint customers to request Finished Intelligence reports on specific topics. These reports are researched and developed by the company’s subject matter experts and typically include actor profiles, incident investigations, threat assessments, and strategic studies.

Flashpoint Curated Alerting: This alerting service evaluates relevant DDW content and when necessary, provides technical, domain, and/or linguistic expertise from Flashpoint’s subject matter experts. Key features include:

Vetting: all alerts are contextualized and vetted for relevance, so customers can avoid “alerting fatigue” and focus only on alerts that are truly applicable to their organizations.

Risk assessment: Curated alerts are supplemented with a brief assessment tailored to customer needs, enabling customers to more accurately mitigate any risks associated with alerts.

Flashpoint Intelligence Academy (FIA): FIA courses educate users on the BRI methodology, focusing on how to leverage intelligence enterprise-wide to more effectively mitigate risk. As a result, security teams better understand threats, prioritize responses, make more informed decisions, and develop and drive BRI applications across the business. The FIA curriculum is offered in varying formats that align with each of its three levels, including:

Foundational Seminars: FIA seminars provide the foundational framework to the BRI practice. Seminars are typically one-to-two hours long and intended to give individuals strategic insights on how to deal with risks and threats across their organization.

Intermediate Workshops: FIA workshop sessions are designed to be interactive and participants will be fully involved in the learning process, including group discussions and practical application exercises. Workshops can be designed as a full- or multi-day event.

Advanced Exercises: Based around a specific topic or event, FIA Tabletop Exercises (TTX) are scoped and designed directly with participants in order to create highly relevant, real-world scenarios in preparation for incidents in which the organization could fall victim.

Flashpoint Professional Services (FPS): The FPS portfolio comprises a series of customized services designed to help organizations reduce the challenges faced by overwhelmed or under-resourced business risk functions to accelerate growth in capability and efficiency for new or expanding teams. Offerings include:

  • Business Risk Intelligence Management: The staff augmentation service provides resources tailored to customer teams requiring additional skills to support their BRI initiatives.
  • Risk Exposure Reports: This offering provides an in-depth assessment of risk exposure and Deep & Dark Web (DDW) threats targeting an organization.
  • Actor Dossier and Actor Profile Reports: Reporting comprises a comprehensive evaluation of an adversarial actor or group and insight based on available intelligence.
  • Enhanced Deep & Dark Web (DDW) Monitoring: Pre- and post-event monitoring is tailored to customer requirements and includes an ongoing assessment of reputational and legal obligations beyond the conclusion of an investigation or incident response.
  • Impact-Based Response Services: These DDW-centric response services are suitable for organizations that may be facing an advanced cyber threat
  • Incident Response (IR) Retainer: The IR retainer supports response preparedness, thereby enabling organizations to quickly take action for threat assessments, remediation, and recovery.

 For more information about eWEEK's Product Overview and Insight series, email [email protected].

Chris Preimesberger

Chris J. Preimesberger

Chris J. Preimesberger is Editor-in-Chief of eWEEK and responsible for all the publication's coverage. In his 15 years and more than 4,000 articles at eWEEK, he has distinguished himself in reporting...