Cyble: Architecting Real-Time Threat-Intelligence

We have all read about Sherlock Holmes and his extraordinary skills of observation and sharp-wittedness while investigating a case. He would follow a trail of evidence to get to the bottom of seemingly unsolvable cases and catch the perpetrator. Today, one can’t help but draw a resemblance between Holmes and the role of a cybersecurity expert in the modern business landscape. While they both are on the lookout for malefactors, the only difference is Holmes’ task usually begins after a crime has been committed, and a cybersecurity expert is continually working to prevent a cyberattack from occurring in the first place.

Showcasing similar traits is an AI-focused cybersecurity startup—Cyble—founded by a team of passionate cybersecurity practitioners. Cyble was formed due to an underserved demand in the market. For instance, organizations functioning on a larger scale have close to 7000 vendors working in their supply chain. And, the supply chain risk management activities, for most of the part, is managed through a time and material (T&M) basis. However, with the ever-changing suppliers’ ecosystem, even the threat actors are evolving continually, thereby outmoding the T&M model. This necessitated an advanced platform where companies could automate the assessments of suppliers and also enrich them with (close to) real-time intelligence with enterprise risk tools. “The aim was to allow visibility into cyber risks through automation, integration, and intelligence,” says Beenu Arora, Founder and CEO of Cyble. On that note, Cyble cemented its cornerstone.

Having considerable experience working in the security domain for supply chain companies, Arora has critically observed the changing landscape of enterprise IT security. He notes that the global supply chain is becoming more connected with each passing day, intensifying the digital interdependencies among their IT networks. It is, therefore, becoming an effortless process for cyber attackers to trespass the IT networks and systems and obtain company-critical data. Bearing that in mind, several countries like Australia and Singapore, among the many others, have also imposed strict regulations such as cyber-physical system (CPS) 234 in Australia and MAS requirements, respectively.

Alongside, businesses have moved toward utilizing numerous cloud-based AI tools to fortify the supply chain IT networks. However, these tools are not always able to identify the real target hotspots or the economic repercussions that a cyberattack can bring to an organization. “At Cyble, we help companies keep a tab on these threat points and strive to cultivate a safer supply chain ecosystem,” mentions Arora.

To achieve his feat, Cyble offers its three carefully designed SaaS-based products: Cyble Hawk, Cyble Vision, and Cyble Knight, which addresses the unique cybersecurity needs of companies. “Since these SaaS-based solutions are built in an elastic cloud environment, they do not require installation on customer premises and can be deployed globally,” adds Arora. Cyber Hawk, provides end-to-end visibility on supply chain cyber threats and automates the risk assessment processes through AI. On the other hand, Cyble’s flagship product, Cyble Vision, assists supplier security score while simultaneously carrying threat intelligence (OSINT and darkweb) advisories and reports. And, Cyble Knight— the company’s B2C product—prevents the exposure of personal information on the darkweb and deepweb.

What’s more, all of these products are built on robust data sets consisting of 40 billion data points from darkweb and deepweb content, along with 15 billion pages parsed regularly for scanning the supplier’s IT infrastructure. Such an algorithm provides a comprehensive view of cyber threats and risks posed by any third-party vendor. Organizations can also customize the security scoring of their vendors on the basis of their risk tolerance and integrate with their existing governance, risk management, and compliance (GRC) tools. “Our out-of-box security score for suppliers support an additive scoring mechanism, where customers can choose the relevant signal and accommodate those customizations,” states Arora. In the duration of one year, the Cyble’s solutions have been able to successfully map over two million internet-facing IT infrastructures, and is currently tracking over 25 cybercrimes and operations in the market and have indexed around 25,000 and more data breaches.

To further highlight the robustness of the company’s product offerings, Arora shares an interesting instance where a leading organization was on the cusp of a ransomware attack. The enterprise wanted to understand their exposure in deepweb and darkweb, along with attacker’s motives and techniques. Cyble began by looking into the nature and origin of the attack and was successful in learning significant breach points. “We deployed our multiple darkweb and deepweb monitoring techniques,” says Arora. It not only assisted the client in understanding the loopholes and helped them gain a deeper understanding of their internal IT networks but also provided them the right guidance to safeguard themselves from future attacks.

At the core, such extraordinary dexterity demonstrated by Cyble lays its core elements that define the value of the company. “We are a customer-centric company with a solid team background and principles. We are continually adapting and evolving; this is the bedrock of Cyble’s ecosystem: we are fast-movers and adaptable to the changing market conditions and customers’ requirements,” states Arora. The company works with the mindset to create stronger business outcomes, and believe in doing it right while remaining accountable to its clients.

Looking forward, Cyble plans to add more customers, shareholders, and industry veterans under its hood to accentuate the significant value of the brand. Working primarily with the APAC region, including Singapore, India, and Australia, the company is evaluating many more locations as potential markets while it continues to march on.