Digital Risk Protection
Notice
This feature is available in Collaborate (CSAP) v3.7.6 onwards.
Digital Risk Protection (DRP) is a proactive approach to cybersecurity that involves monitoring, threat identification, and threat mitigation. In Collaborate (CSAP), the DRP feature helps you comprehensively monitor your organization's digital presence, which includes websites, domain registrations, and other online assets. This monitoring will help you identify potential risks such as domain infringement, leaked credentials, and more.
How does it work?
Analysts can configure supported integrations for Digital Risk Protection in Collaborate's Analyst Portal. As a member, these integrations are available for you in the Member Portal in Digital Risk Protection.
Note
You can view this feature in the Member Portal if it is enabled for your organization. For more information, contact your Collaborate administrator.
What are the use cases of DRP?
By continuously monitoring your domain for DRP threats, you can protect your organization against any security threats that target your brand or protect it from other digital risks.
Identify compromised employee credentials or leaked login information. This helps you take action to secure affected accounts and prevent unauthorized access.
Using incident reports, respond rapidly to any identified cyber threats. By integrating DRP into your incident response procedures, you can streamline your response efforts and respond to threats faster.
Stay ahead of emerging cyber threats by continuously monitoring your digital environment for potential risks and vulnerabilities.
View Incident Reports
Incident reports give you detailed information about security incidents that have occurred in your organization. These reports play an important role in helping you understand, respond to, and mitigate the impact of security incidents. Incident reports in DRP consist of the following information:
You can view the description of the incidents in Analysis. This includes details such as when the incident occurred, and how it was discovered. This data is directly sourced from the configured integration.
You can view all attachments associated with the incident in Attachments. You can choose to download them for your reference.
Use Search or click Filters to view reports based on category, incident type, report type, severity, and status.
View Credential Watchlists
Monitor and track compromised or potentially compromised user credentials, such as email addresses and passwords, from internet sources such as the dark web. This approach helps you identify security threats and take appropriate actions to protect your digital assets. Credential watchlists in DRP consist of the following information:
View all credential-related information such as the password, status, detection date, and more.
Switch between standard and JSON view based on your preference.
Use Search or click Filters to view credential details based on their status (addressed and compromised).
View Domain Watchlists
Use DRP in Collaborate to monitor specific domains of your organization. This helps you identify domains that may be involved in cyberattacks, such as phishing, malware distribution, or data breaches. Domain watchlists in DRP consist of the following information:
View all domain-related information such as the detection date, extraction date, and more.
Switch between standard and JSON view based on your preference.
Use Search or click Filters to view domain details based on their status (monitored and reported).
View Dashboards
Utilize visual representation of data received from supported integrations using dashboards.
You can select the date range to view relevant data.
Click View All to view detailed information for each widget.
You can also choose to change the layout of each widget.