惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

F
Fortinet All Blogs
美团技术团队
T
Tenable Blog
大猫的无限游戏
大猫的无限游戏
Schneier on Security
Schneier on Security
S
Schneier on Security
博客园_首页
C
Cyber Attacks, Cyber Crime and Cyber Security
I
Intezer
T
Tailwind CSS Blog
GbyAI
GbyAI
C
CERT Recently Published Vulnerability Notes
博客园 - 【当耐特】
IT之家
IT之家
G
Google Developers Blog
C
CXSECURITY Database RSS Feed - CXSecurity.com
P
Privacy International News Feed
Vercel News
Vercel News
Cyberwarzone
Cyberwarzone
N
News and Events Feed by Topic
Application and Cybersecurity Blog
Application and Cybersecurity Blog
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
The Register - Security
The Register - Security
人人都是产品经理
人人都是产品经理
Cisco Talos Blog
Cisco Talos Blog
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
Project Zero
Project Zero
V
V2EX
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
月光博客
月光博客
Hacker News - Newest:
Hacker News - Newest: "LLM"
WordPress大学
WordPress大学
L
LangChain Blog
阮一峰的网络日志
阮一峰的网络日志
MongoDB | Blog
MongoDB | Blog
F
Full Disclosure
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
N
News and Events Feed by Topic
G
GRAHAM CLULEY
H
Hacker News: Front Page
Forbes - Security
Forbes - Security
H
Heimdal Security Blog
L
LINUX DO - 最新话题
L
Lohrmann on Cybersecurity
Apple Machine Learning Research
Apple Machine Learning Research
Help Net Security
Help Net Security
C
Cybersecurity and Infrastructure Security Agency CISA
Recent Announcements
Recent Announcements
C
Cisco Blogs
L
LINUX DO - 热门话题

Threat Intelligence Blog | Flashpoint

Inside Qilin Ransomware: Custom Rust Loader and Kernel-Level EDR Killer Understanding Illicit Ecosystems: How Dark Web Forums Structure Cybercrime AI, Trust, and the Future of Threat Intelligence Remus Stealer: A New, Not-So-New Infostealer America250 Fourth of July Threat Assessment Unmasking the Digital Trail: Essential Techniques for Vetting AI-Generated Content The Shift to Threat-Informed Prioritization: Operationalizing CISA BOD 26-04 Identity Is the New Attack Surface: How Infostealers Are Reshaping Enterprise Risk Understanding Illicit Ecosystems: Weaponizing Mainstream Apps and Social Infrastructure Connecting Vulnerability Intelligence to Real-World Exposure With Flashpoint EASM Understanding Illicit Ecosystems: XSS and the Current State of the Russian-Speaking Underground How to Align and Measure Threat Intelligence Operations: Flashpoint Priority Intelligence Requirements The Mini Shai-Hulud Worm and the New Era of CI/CD Exploitation Understanding Illicit Ecosystems: The Hybrid Threat of “The Com” AI Threat Report: How Artificial Intelligence Is Used Across Illicit Communities How Mergers and Acquisitions Expand Your Attack Surface Overnight The Evolution of the Geotag: How AI is Bridging the Gap in Location-Based OSINT Navigating the Threat Landscape of the 2026 FIFA World Cup Inside the 2026 Cyber Threat Landscape: Data-Driven Security Priorities Flashpoint MCP Server: Operationalizing Cyber Threat Data for Agentic AI Security Workflows 2026 Gartner® Magic Quadrant™ for Cyber Threat Intelligence: Key Takeaways for Security Leaders Escalation in the Middle East: Tracking “Operation Epic Fury” Across Military and Cyber Domains How to Build and Operationalize Priority Intelligence Requirements National Vulnerability Database (NVD) Shifts to Selective Enrichment as CVE Volume Surges Flashpoint Surpasses Cataloging 7,000 Known Exploited Vulnerabilities as Disclosure Volume Accelerates Why Intelligence Requirements Fall Flat and How to Fix Them with a Practical Priority Intelligence Requirements Framework The Phishing-as-a-Service Pipeline: How a Scalable Fraud Ecosystem Is Driving Global Attacks Tax Refund Fraud in 2026: How Threat Actors Exploit Identity, Verification, and Cash-Out Channels The Language of Emojis in Threat Intelligence: How Adversaries Signal, Obfuscate, and Coordinate Online What the NVD ‘Slowdown’ Means For You: How to Stay Ahead in Vulnerability Management Forrester Threat Intelligence Landscape: Key Takeaways for Security Leaders Connecting Threat Intelligence to Decision-Making: How Flashpoint Is Operationalizing Intelligence in 2026 Iran-Aligned Militias Signal Expanded Regional Risk Amid US–Israel–Iran Conflict Destructive Activity Targeting Stryker Highlights Emerging Supply Chain Risks Navigating 2026’s Converged Threats: Insights from Flashpoint’s Global Threat Intelligence Report What to Know About the Notepad++ Supply-Chain Attack Cyber Threat Intelligence Index: Q3 2023 Edition Beyond Hamas: Militant and Terrorist Groups Involved in the October 7 Attack on Israel The First 72 Hours of the Israel-Hamas War: Hamas and PIJ Activity on Telegram About Us Qakbot Takedown: A Brief Victory in the Fight Against Resilient Malware Unmasking the Attacker and Decoding Threat Actor Patterns The Flashpoint Firehose: 5 Questions With Michael Raypold, VP of Engineering The Seven Phases of a Ransomware Attack: A Step-by-Step Breakdown of the Attack Lifecycle Lost in Transition: A Timeline of Failed Successors to Breach and Raid Forums Days of Chaos: How OSINT Helps Us Understand the Putin-Prigozhin Schism Lessons From Clop: Combating Ransomware and Cyber Extortion Events How to Combat Check Fraud: Leveraging Intelligence to Prevent Financial Loss Beyond Gates and Alarms: The Scope and Impact of Physical Security Intelligence Why We Built Flashpoint Ignite: Unity, Power, and Performance The Risk-Reducing Power of Flashpoint Video Search Card Shop Threat Landscape: BidenCash Dumps 2.1M Stolen Credit Cards Flashpoint in 2023: A Note From Our CEO 5 Reasons Taiwan Is a Growing Source of US-China Tension Open Source Intelligence
Why We Acquired Echosec Systems: The OSINT Revolution
Josh Lefkowitz · 2022-08-04 · via Threat Intelligence Blog | Flashpoint

It’s our mission as intelligence providers to some of the world’s most discerning clients to help them stay ahead of the threats that could impede their focus on protecting their people, places, and assets everywhere. 

Today thus marks a key moment in our evolution as a company. I’m delighted about our acquisition of Echosec Systems, whose team and technology are world class and whose intelligence will help us continue to help companies reduce risk holistically across teams. 

Here’s why I’m so excited to be able to bring Echosec’s open-source, social media, and geospatial intelligence to a wider audience, and where we go from here.

The Importance of OSINT

I began my career in the wake of 9/11 analyzing the activities of terrorist groups to support numerous national security investigations and prosecutions. My experiences in this domain spurred the recognition that open source intelligence (OSINT) could be an invaluable counterterrorism tool. When we realized that OSINT in the modern era couldn’t be done without automating data collection and analytics at scale, Flashpoint was born.

The online spaces where threat actors congregate and operate have evolved dramatically since the early 2000s and now include illicit communities, criminal marketplaces, paste sites, and foreign-language forums across the deep and dark web. Furthermore, there’s much intelligence to be gleaned from publicly available information (PAI) and OSINT derived from social media, including geospatial data, social sentiment, and other real-time information that can support mission requirements for national security, public safety, and commercial security teams.

Today, OSINT is a proven and foundational element to the intelligence community. 

As Jennifer Ewbank, Deputy Director for Digital Innovation at the CIA, said recently: “Many questions that once had to be answered by more secretive intelligence collection are now answered with a few clicks on a mobile device.” 

She added, “OSINT is the INT of first resort, informing every aspect of the intelligence community’s mission. When you think about the future of the intelligence business…you should first think about open source.”

And the most dynamic and impactful intelligence partners, like Flashpoint, are helping organizations leverage technology to harness OSINT at scale, organize it, classify it, make sense of it, and understand when action is warranted.

Why Echosec

This is where Echosec is a leader in giving users the ability to leverage real-time OSINT to drive on-the-ground insights and action. Complemented by Flashpoint’s own OSINT and unique collections, this key acquisition continues our evolution as the leading provider of actionable intelligence, supporting cyber and physical security missions around the world.

Data, Platform, and Compliance

Echosec has built an extraordinarily intuitive and highly user-friendly platform that is helping some of the most demanding and discerning customers address a broad array of threats globally. 

Echosec maintains broad coverage across critical social media platforms worldwide. Their OSINT provides security teams across the public and private sector localized situational awareness in faraway places, helping them better assess geopolitical risk, keep executives from harm, protect populations and places, and respond to crises in an informed and efficient manner.

In addition to best-in-class social media collections, Echosec has maintained a focus on ensuring compliance with all social media platforms. The company’s respect for privacy and security of data subjects was a key factor in our decision to acquire them and falls in line with our own policies. Both Flashpoint and Echosec share an ethos around the importance of ethical and compliant data access to be a trusted intelligence partner. 

Mission and Team

Additionally, the Echosec and Flashpoint missions are very well aligned—notably overlapping around the theme of protection. Our mission alignment is incredibly important as we move forward with the merged companies, as it will ensure continuity and clarity to both organizations’ current and future clients.

Our mission will continue to drive the choices we make as a company so that we can continue to help organizations protect what they value and cherish most, and to do our part to make the world a safer place.

Echosec’s team is a mighty one, and what they’ve built is incredible. I am so excited to bring on a team as talented as they are and whose culture- and mission-driven  values align so well with ours. 

The Future is Now

Buoyed by Echosec’s data, platform, and approach to compliance, coupled with our mutual and value/team alignment, Flashpoint is geared up for huge successes in the coming months and years.

Following on the heels of our Risk Based Security acquisition in January, the integration of Echosec further enables Flashpoint to empower CTI, vulnerability management, and corporate security teams to work together to detect, prioritize, and mitigate the threats across their organization to reduce overall risk more comprehensively. 

In the weeks to come, as we integrate Echosec’s data and technology into the Flashpoint Suite, we can’t wait to share with our customer and peers our extended capabilities, delivering the world’s most robust combination of data, analytics, and automation across a wide range of security use cases.

Frequently Asked Questions (FAQs)

Why did Flashpoint acquire Echosec and how does it improve the platform?

Flashpoint acquired Echosec to integrate world-class OSINT and social media intelligence into its existing threat data ecosystem. This improves the platform by providing a unified view of both cyber and physical risks. Flashpoint users can now monitor dark web forums and real-time social media activity in a single workspace, allowing them to detect threats against their personnel and facilities that traditional cyber intelligence might miss.

Flashpoint FeatureAcquisition Benefit
Location-Based SearchAllows users to monitor security events at specific GPS coordinates.
Broad OSINT AccessConnects dark web chatter with surface web social media trends.
Unified DashboardStreamlines investigations by housing CTI and PSI in one interface.

How does the addition of Echosec technology enhance executive protection?

The addition of Echosec technology enhances executive protection by allowing security teams to monitor for doxing, threats, and travel risks on social media. Flashpoint can now identify when a leader’s travel plans are being discussed in illicit forums and then use Echosec’s geofencing to monitor the safety of the specific hotel or event venue they are visiting. This provides a digital-to-physical protective shield for high-profile personnel.

  • Real-Time Monitoring: Alerts teams to social media posts targeting specific executives.
  • Geofencing: Tracks activity around an executive’s current location or destination.
  • Sentiment Analysis: Identifies rising hostility or planned protests before they reach a leader’s location.

Why is Flashpoint’s “360-degree view of risk” vital for modern enterprises?

Flashpoint’s 360-degree view of risk is vital because modern threats are no longer strictly digital or physical. A threat actor might use social media to coordinate a physical breach of a data center or recruit an insider for a cyberattack. By combining Echosec’s social data with Flashpoint’s deep web collections, enterprises can identify these cross-functional threats in their early stages and mitigate them before they impact the business.

Threat TypeFlashpoint Integrated Response
Physical SecurityUses geofencing to detect on-the-ground threats to corporate offices.
Brand ProtectionTracks both dark web counterfeit sales and social media brand abuse.
Supply ChainMonitors logistics hubs for both cyber vulnerabilities and physical disruptions.