Digital Risk Protection
Notice
This feature is available in Collaborate v3.8.1 and only for Cyware cloud-based deployments.
Digital Risk Protection (DRP) is a proactive approach to cybersecurity that involves monitoring, threat identification, and threat mitigation of digital assets. In Collaborate, the DRP feature helps you comprehensively monitor the digital presence of organizations for whom DRP is enabled, which includes websites, domain registrations, and other online assets.
Note
To enable DRP for the Analyst Portal, contact your Collaborate administrator.
How does it work?
As an analyst, you must first configure and enable supported integrations for DRP in the Analyst Portal. For more information, see Manage Digital Risk Protection Integrations. After configuring these integrations, you must enable Digital Risk Protection as a feature for the organizations in the Member Portal. For more information, see Organization Details. This feature is subsequently available in both the Analyst and Member Portals.
To view Digital Risk Protection in the Analyst Portal, click the main menu and select Digital Risk Protection. By default, you can view incident reports, credential watchlists, domain watchlists, and dashboards for all organizations.
View Incident Reports
Incident reports give you detailed information about security incidents that have occurred in organizations for whom DRP is enabled.
From the Organization drop-down, select the specific organization for which you want to view incident reports.
You can view the description of the incidents in Analysis. This includes details such as when the incident occurred, and how it was discovered.
You can view all attachments associated with the incident in Attachments. You can choose to download them for your reference.
Use Search or click Filters to view reports based on category, incident type, report type, severity, and status.
View Credential Watchlists
Monitor and track compromised or potentially compromised user credentials, such as email addresses and passwords, from internet sources such as the dark web.
From the Organization drop-down, select the specific organization for which you want to view credential watchlists.
View all credential-related information such as the password, status, detection date, and more.
Switch between standard and JSON view based on your preference.
Use Search or click Filters to view credential details based on their status (addressed and compromised).
View Domain Watchlists
You can use Domain Watchlists to monitor specific domains of organizations for whom DRP is enabled. This helps you identify domains that may be involved in cyberattacks, such as phishing, malware distribution, or data breaches.
From the Organization drop-down, select the specific organization for which you want to view domain watchlists.
Switch between standard and JSON view based on your preference.
View all domain-related information such as the detection date, extraction date, and more.
Use Search or click Filters to view domain details based on their status (monitored and reported).
View Dashboards
Utilize visual representation of data received from supported integrations for organizations.
From the Organization drop-down, select the specific organization for which you want to view dashboards.
You can select the date range to view relevant data.
Click View All to view detailed information for each widget.
You can also choose to change the layout of each widget.