Latest news with #Cyware
Business Wire
5 days ago
- Business
- Business Wire
New Cyware MCP Server Expands AI Ecosystem to Bolster Threat Intelligence Management
NEW YORK--(BUSINESS WIRE)--Cyware, the leader in AI-powered threat intelligence management, secure threat sharing and collaboration, as well as hyper-orchestration and response, today announced the release of Cyware MCP Server (Model Context Protocol Server) to advance the future of AI-powered cyber defense. The new open-source capability is purpose-built to enable generative AI-native workflows, allowing seamless integration between Cyware's threat intelligence; security automation platforms and large language models (LLMs). 'Cyware MCP Server exposes our Agentic AI components to AI Assistants, enabling access to key tools and actions." Share 'Cyware MCP Server exposes our Agentic AI components to AI Assistants enabling access to key tools and actions which then empowers security teams to retrieve insights, take action, and orchestrate complex workflows in a secure, fully contextual environment,' said Akshat Jain, CTO and Co-Founder of Cyware. 'This foundational capability enhances the speed, precision, and scalability of threat detection, investigation, and response.' The release builds on Cyware's vision to create efficient solutions that help organizations with smarter AI-enabled threat intelligence operationalization and is a key part of Cyware Quarterback AI, our AI layer powering intelligent workflows across the threat lifecycle. That starts with automation at the start of threat data processing where Cyware automatically ingests, deduplicates, normalizes, enriches, and scores threat data to empower automated threat investigations and subsequent actioning. Beyond this deep level of automation, Cyware's platform utilizes practical AI across its entire portfolio to transform how threat data is analyzed, contextualized, and actioned with the goal to automate complex processes and augment human decision-making. The company's long-term AI-powered Threat Management and SOC vision centers on a Multi-Agent Fabric (MAF) approach, where purpose-built, contextual and dynamic AI agents, coupled with its Unified Threat Management product portfolio integrate & operate seamlessly to help security teams outpace adversaries, reduce response times, and operationalize threat intelligence at scale. Cyware's Application of AI in Threat Intelligence Management Cyware's platform focuses on applied AI across the entire threat intelligence lifecycle, from ingestion to action, helping analysts move faster and security teams scale more effectively. Key Cyware Quarterback AI capabilities include: Smart Parsing and Enrichment : AI-powered extraction of IOCs, TTPs, threat actors, malware, vulnerabilities, and recommended actions from reports, browser-based threat intel, and alerts — reducing manual input and accelerating investigations. : AI-powered extraction of IOCs, TTPs, threat actors, malware, vulnerabilities, and recommended actions from reports, browser-based threat intel, and alerts — reducing manual input and accelerating investigations. Summarization and Contextualization : Automated executive summaries of threat reports, alerts, and RSS feeds highlight critical TTPs, CVEs, and mitigation steps to support faster triage and decision-making. : Automated executive summaries of threat reports, alerts, and RSS feeds highlight critical TTPs, CVEs, and mitigation steps to support faster triage and decision-making. AI-Powered Orchestration : LLM-based playbook components enable intelligent alert analysis, data normalization, and custom code generation, reducing the need for coding expertise while enhancing response workflows. : LLM-based playbook components enable intelligent alert analysis, data normalization, and custom code generation, reducing the need for coding expertise while enhancing response workflows. Embedded AI Assistants: A real-time, contextual AI chat experience provides in-product guidance, integrates with technical documentation, and allows users to trigger actions and retrieve citations on-demand. These capabilities lay the groundwork for Cyware's broader AI-native future, where automation and intelligence work hand-in-hand to support security teams at every stage. To learn more about the Cyware MCP Server, visit or explore the open-source repository on GitHub. About Cyware Cyware is leading the industry in operationalized threat Intelligence and collective defense, helping security teams transform threat intelligence from fragmented data points to actionable, real-time decisions. We unify threat intelligence management, intel sharing and collaboration, as well as hyper-orchestration and automation — eliminating silos and enabling organizations to outmaneuver adversaries faster and more effectively. From enterprises to government agencies and ISACs, Cyware empowers defenders to turn intelligence into impact.
Yahoo
5 days ago
- Business
- Yahoo
New Cyware MCP Server Expands AI Ecosystem to Bolster Threat Intelligence Management
The Open-Source AI Capability Enables Natural Language–Driven Actions via LLMs Directly Within Cyware's Threat Intelligence and Security Automation Solutions NEW YORK, August 05, 2025--(BUSINESS WIRE)--Cyware, the leader in AI-powered threat intelligence management, secure threat sharing and collaboration, as well as hyper-orchestration and response, today announced the release of Cyware MCP Server (Model Content Protocol Server) to advance the future of AI-powered cyber defense. The new open-source capability is purpose-built to enable generative AI-native workflows, allowing seamless integration between Cyware's threat intelligence; security automation platforms and large language models (LLMs). "Cyware MCP Server exposes our Agentic AI components to AI Assistants enabling access to key tools and actions which then empowers security teams to retrieve insights, take action, and orchestrate complex workflows in a secure, fully contextual environment," said Akshat Jain, CTO and Co-Founder of Cyware. "This foundational capability enhances the speed, precision, and scalability of threat detection, investigation, and response." The release builds on Cyware's vision to create efficient solutions that help organizations with smarter AI-enabled threat intelligence operationalization and is a key part of Cyware Quarterback AI, our AI layer powering intelligent workflows across the threat lifecycle. That starts with automation at the start of threat data processing where Cyware automatically ingests, deduplicates, normalizes, enriches, and scores threat data to empower automated threat investigations and subsequent actioning. Beyond this deep level of automation, Cyware's platform utilizes practical AI across its entire portfolio to transform how threat data is analyzed, contextualized, and actioned with the goal to automate complex processes and augment human decision-making. The company's long-term AI-powered Threat Management and SOC vision centers on a Multi-Agent Fabric (MAF) approach, where purpose-built, contextual and dynamic AI agents, coupled with its Unified Threat Management product portfolio integrate & operate seamlessly to help security teams outpace adversaries, reduce response times, and operationalize threat intelligence at scale. Cyware's Application of AI in Threat Intelligence Management Cyware's platform focuses on applied AI across the entire threat intelligence lifecycle, from ingestion to action, helping analysts move faster and security teams scale more effectively. Key Cyware Quarterback AI capabilities include: Smart Parsing and Enrichment: AI-powered extraction of IOCs, TTPs, threat actors, malware, vulnerabilities, and recommended actions from reports, browser-based threat intel, and alerts — reducing manual input and accelerating investigations. Summarization and Contextualization: Automated executive summaries of threat reports, alerts, and RSS feeds highlight critical TTPs, CVEs, and mitigation steps to support faster triage and decision-making. AI-Powered Orchestration: LLM-based playbook components enable intelligent alert analysis, data normalization, and custom code generation, reducing the need for coding expertise while enhancing response workflows. Embedded AI Assistants: A real-time, contextual AI chat experience provides in-product guidance, integrates with technical documentation, and allows users to trigger actions and retrieve citations on-demand. These capabilities lay the groundwork for Cyware's broader AI-native future, where automation and intelligence work hand-in-hand to support security teams at every stage. To learn more about the Cyware MCP Server, visit or explore the open-source repository on GitHub. About Cyware Cyware is leading the industry in operationalized threat Intelligence and collective defense, helping security teams transform threat intelligence from fragmented data points to actionable, real-time decisions. We unify threat intelligence management, intel sharing and collaboration, as well as hyper-orchestration and automation — eliminating silos and enabling organizations to outmaneuver adversaries faster and more effectively. From enterprises to government agencies and ISACs, Cyware empowers defenders to turn intelligence into impact. View source version on Contacts Media Contact: Jay SmithTouchdown PR for Cywarecyware@
Yahoo
29-07-2025
- Business
- Yahoo
Newly Expanded Cyware Intelligence Suite Adds Malware Sandbox, Sectoral Feeds, and Domain Sightings
First-of-its-kind CTI program-in-a-box builds on integrated compromised credential management and premium threat feeds to deliver a unified threat intelligence solution NEW YORK, July 29, 2025--(BUSINESS WIRE)--Cyware, the leader in AI-powered threat intelligence management, secure threat sharing and collaboration, and hyper-orchestration and response, today expanded its Cyware Intelligence Suite, an enhanced threat intelligence program-in-a-box that consolidates threat management capabilities into a streamlined, logical workflow. The expansion enables security teams to operationalize threat intelligence more easily and improve security posture faster. The Cyware Intelligence Suite addresses the complexities of launching and maintaining a Cyber Threat Intelligence (CTI) program by streamlining deployment, enrichment, and operationalization. Built on Cyware Intel Exchange, the solution now includes three powerful new components: Cyware Sandbox Service, Cyware Sectoral Feeds, and Domain Sightings, in addition to already available Compromised Credential Management, Team Cymru Threat Feeds, and a collection of pre-configured integration, tags, rules, searches, and more. "The Cyware Intelligence Suite, combined with Cyware Intel Exchange, forms a pre-configured, modular, and end-to-end automated threat intelligence operationalization solution," said Sachin Jade, Chief Product Officer, Cyware. "Now with native sandboxing, curated industry-focused intelligence feeds, and domain sightings, teams can proactively analyze artifacts, understand malware behavior, investigate domain-based threats, and apply highly contextual indicators to their security operations without waiting for custom setups or tool integrations." Key New Capabilities of the Cyware Intelligence Suite: Cyware Sandbox Service: Enables analysts to detonate suspicious files and URLs in a secure, private environment, retrieving detailed behavioral and static analysis to directly enrich threat intelligence within Cyware Intel Exchange. Benefits include advanced malware behavior visibility, threat context and campaign correlation, and private-by-design sandboxing. Cyware Sectoral Feeds: Delivers a continuous stream of daily, enriched sector-specific malware intelligence, these feeds are powered by multi-source threat analysis and sandbox correlation. They offer curated, enriched malware intelligence, acceleration from IOC to insight, and sectoral threat prioritization. This includes feeds for healthcare, finance, energy, government, manufacturing, and operational technology. Domain Sightings: This new module within Exposure Management enables automated monitoring and investigation of domain mentions across dark web forums and cybercrime marketplaces, offering screenshot previews with threat context and correlation with existing IOCs and campaigns. This provides dark web threat visibility without exposing analysts to the Tor network, along with actionable context from mentions and correlated threat intelligence. "Cyware has formed a unique solution blending advanced threat intelligence processing with compromised credential management, malware detonation sandbox, and domain sightings," said Chris Steffen, Vice President Research, Enterprise Management Associates. "This collection of capabilities streamlines traditionally disparate functions into an end-to-end threat management system that helps accelerate response measures." To learn more about the Cyware Intelligence Suite, visit About Cyware Cyware is leading the industry in operationalized threat Intelligence and collective defense, helping security teams transform threat intelligence from fragmented data points to actionable, real-time decisions. We unify threat intelligence management, intel sharing and collaboration, as well as hyper-orchestration and automation — eliminating silos and enabling organizations to outmaneuver adversaries faster and more effectively. From enterprises to government agencies and ISACs, Cyware empowers defenders to turn intelligence into impact. View source version on Contacts Media Contact: Jay SmithTouchdown PR for Cywarecyware@ Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Business Wire
15-07-2025
- Business
- Business Wire
Cyware and Carahsoft Partner to Deliver Operationalized Threat Intelligence to State, Local, Tribal and Territorial Agencies
NEW YORK & RESTON, Va.--(BUSINESS WIRE)-- Cyware, the industry leader in threat intelligence operationalization, collaboration and orchestrated response, and Carahsoft Technology Corp., The Trusted Government IT Solutions Provider®, today announced a strategic partnership. Under the agreement, Carahsoft will serve as Cyware's Public Sector distributor, making Cyware's solutions available to State, Local, Tribal and Territorial (SLTT) agencies through Carahsoft's reseller partners and National Association of State Procurement Officials (NASPO) ValuePoint, The Interlocal Purchasing System (TIPS), OMNIA Partners, E&I Cooperative Services Contract and The Quilt contracts. As cyberattacks on public infrastructure increase in scale and complexity, organizations face mounting pressure to improve threat visibility, coordination and response — often with limited resources and fragmented systems. SLTT agencies play a foundational role in the nation's cyber resilience, and this partnership streamlines the path to stronger, AI-powered defenses. 'SLTT agencies are on the front lines of today's cyber battlefield, yet they're often underserved when it comes to advanced defense capabilities,' said Tom Stockmeyer, Managing Director of Government at Cyware. 'Our partnership with Carahsoft ensures these agencies can rapidly access and implement Cyware's AI-driven solutions. It's about delivering meaningful outcomes, better protection, faster response and stronger community resilience.' Cyware empowers agencies through unified threat intelligence ingestion, sharing and response — integrated with key Public Sector resources such as the Cybersecurity and Infrastructure Security Agency (CISA)'s Automated Indicator Sharing (AIS) program, and multiple Information Sharing and Analysis Centers (ISACs), including MS-ISAC and Health-ISAC. The platform supports real-time collaboration and automation across cyber operations, enabling SLTT organizations to act faster and with greater precision to strengthen their cyber defenses. 'Our partnership with Carahsoft is a significant step forward in empowering SLTT agencies with the right tools to defend against cyber threats,' said Shashi Nair, Head of Channel at Cyware. 'By combining Carahsoft's trusted procurement channels with Cyware's cutting-edge solutions, we're making it easier for these agencies to quickly adopt and operationalize threat intelligence and response capabilities. This collaboration will help streamline the path to stronger, more resilient cybersecurity for our Public Sector partners.' Cyware's solutions are designed to address the unique needs of Public Sector teams, with support for specific Government use capabilities such as ACS Markings, flexible deployment options (cloud or on-premise), scalability for agencies of all sizes, and alignment with key compliance initiatives. Cyware is currently 'StateRAMP In Process' and supports SLTT teams leveraging the State and Local Cybersecurity Grant Program (SLCGP) and other funding vehicles. 'Cyware's solutions are a valuable addition to Carahsoft's cybersecurity portfolio for the Public Sector,' said Michael Shrader, Vice President of Intelligence and Innovative Solutions. 'We're proud to work with our resellers to support SLTT customers in their efforts to modernize their cyber defenses with AI-powered tools that improve intelligence sharing, collaboration and incident response.' Cyware's solutions are available through Carahsoft's NASPO ValuePoint Master Agreement #AR2472, TIPS Contract #220105, OMNIA Partners Contract #R191902, E&I Contract #EI00063~2021MA and The Quilt Master Service Agreement Number MSA05012019-F. For more information, contact the Carahsoft Team at (703) 871-8548 or Cyware@ or read this blog, Bridging the Threat Intelligence Gap: Why SLTT Governments Can't Afford to Wait. About Cyware Cyware is leading the industry in operational threat Intelligence and collective defense, helping security teams transform threat intelligence from fragmented data points to actionable, real-time decisions. We unify threat intelligence management, intel sharing and collaboration, as well as hyper-orchestration and automation — eliminating silos and enabling organizations to outmaneuver adversaries faster and more effectively. From enterprises to government agencies and ISACs, Cyware empowers defenders to turn intelligence into impact. About Carahsoft's Cybersecurity Solutions Portfolio Carahsoft's Cybersecurity solutions portfolio includes leading and emerging technology vendors that enable organizations to defend against cyber threats, manage risk and achieve compliance. Supported by dedicated Cybersecurity product specialists and an extensive ecosystem of resellers, integrators and service providers, we help organizations identify the right technology for unique environments and provide access to technology solutions through our broad portfolio of contract vehicles. The cybersecurity portfolio spans solutions for Supply Chain Risk Management, Cloud Security, Network & Infrastructure, Identity & Access Management, Risk & Compliance and more, ensuring comprehensive protection for organizations' cyber ecosystems. Explore Carahsoft's Cybersecurity Solutions for Government here. About Carahsoft Carahsoft Technology Corp. is The Trusted Government IT Solutions Provider, supporting Public Sector organizations across Federal, State and Local Government agencies and Education and Healthcare markets. As the Master Government Aggregator® for our vendor partners, we deliver solutions for Cybersecurity, MultiCloud, DevSecOps, Artificial Intelligence, Customer Experience and Engagement, Open Source and more. Working with resellers, systems integrators and consultants, our sales and marketing teams provide industry leading IT products, services and training through hundreds of contract vehicles. Visit us at
Business Wire
10-07-2025
- Business
- Business Wire
Cyware Survey at InfoSec Europe Reveals Industry Gap in Operationalising Threat Intelligence
LONDON--(BUSINESS WIRE)--Cyware, the leader in threat intelligence management, security collaboration, and orchestrated response, today released new research revealing that a majority see the importance of having a Threat Intelligence Program and have started a Program. However, 80% of respondents recognise their threat intelligence programs are not fully operationalised, highlighting a significant opportunity for threat intelligence automation. The findings, gathered from security professionals at InfoSec Europe 2025, expose critical gaps in the maturity and automation of legacy threat intelligence platform capabilities, as well as a growing appetite for AI-driven solutions to augment speed, context and actioning of threat intel. Further survey results support this gap in operationalised threat intelligence, where 30% noted they are grappling with too many feeds with too little context, followed by a lack of automation/playbooks capabilities at 29%, and insufficient dedicated staff at 18%. All of these challenges reflect the need for maturing and operationalising threat intelligence that can be addressed with an AI-driven, automation-rich threat intelligence platform (TIP). Survey responses identified the most in-demand TIP capabilities as follows: automation (48%), contextualisation and enrichment (37%) and more accurate risk scoring (34%). 'We are excited to see this validation, coming straight from security practitioners, for how we've designed automation across the threat intelligence management lifecycle,' said Anuj Goel, CEO and Co-founder of Cyware. 'Our unified threat intelligence solution automates ingestion, normalisation, de-duplication, enrichment and all the way through to threat actioning, facilitating and accelerating the full threat workflow.' The automation theme continued in survey results, with over half (51%) of cybersecurity professionals believing AI is best placed to automate triaging and prioritisation of threats. Cautious excitement exists with AI, where 61% said they would only trust AI agents to take limited autonomous actions (such as blocking IOCs or quarantining endpoints) provided there was still human oversight. 'The survey confirms what many in the industry are already feeling – that traditional approaches to threat intelligence are no longer enough,' said Brett Candon, VP International at Cyware. 'Security teams need AI-powered tools that can enrich data with context, automate time-consuming workflows and support real-time decision making. The opportunity is an augmented system from AI and automation that maintains human verification or oversight while improving their capacity to defend against the volume and complexity of today's threats.' Additional key research findings include: Only 20% of respondents said they are 'fully operationalised' in their use of threat intelligence with response integration–reflecting the gap in legacy TIP with current threat intelligence program requirements. Of those using a legacy TIP, only 17% use it to automate response workflows and 27% to enrich incidents and alerts–exposing untapped potential in modern TIPs. Only 16% of TIP users are currently sharing intelligence with partners or peers, despite nearly 75% recognising a need to improve sharing practices–further identifying opportunities with modern TIP capabilities. Only 38% of organisations have a defined threat intel sharing process that includes their supply chain, suggesting a missed opportunity for building greater resilience through collaboration. 39% identified AI-assisted correlation of IOCs and TTPs as the most valuable capability in an AI-powered TIP. About Cyware Cyware is leading the industry in operational threat Intelligence and collective defense, helping security teams transform threat intelligence from fragmented data points to actionable, real-time decisions. We unify threat intelligence management, intel sharing and collaboration, as well as hyper-orchestration and automation — eliminating silos and enabling organisations to outmaneuver adversaries faster and more effectively. From enterprises to government agencies and ISACs, Cyware empowers defenders to turn intelligence into impact.
