Press Release

Mandiant Accelerates Operational Use of its Leading Threat Intelligence with First-of-their-kind SaaS Offerings

Oct 05, 2021
6 min read

WASHINGTON, D.C. – Mandiant Cyber Defense Summit – Oct. 5, 2021 – Mandiant, Inc. (NASDAQ: MNDT), the leader in dynamic cyber defense and response, today announced two new, first-of-their-kind SaaS offerings – Active Breach & Intel Monitoring and Ransomware Defense Validation. The new products bolster the multi-vendor Extended Detection and Response (XDR) capabilities of the Mandiant Advantage platform by accelerating operational use of Mandiant’s leading up-to-the-minute threat intelligence and validating whether an organization’s security controls could alert, contain, or block prevalent ransomware attacks. These offerings are designed with organizations of all sizes in mind to improve their security effectiveness and confidence in their readiness to defend against cyber attacks. The two new offerings are expected to be generally available in January 2022.

Threat actors have continued to become more sophisticated – especially during the COVID-19 pandemic – and are targeting organizations of all sizes and industries. As organizations invest in talent and technology to stop these potential threats, they require solutions that quickly identify targeted attacks and gaps in security informed by up-to-date, relevant threat intelligence.

To address the growing need of organizations to protect themselves against cyber attacks, Mandiant is launching Active Breach & Intel Monitoring and Ransomware Defense Validation. Leveraging the most accurate and relevant threat intelligence, these SaaS-based solutions allow organizations to detect the presence of active Indicators of Compromise (IOCs) in their environment and test their readiness to withstand the latest ransomware attacks.

Active Breach & Intel Monitoring

Active Breach & Intel Monitoring, powered by insights gained from Mandiant’s global incident response engagements and comprehensive threat intelligence research, is designed to identify the presence of relevant Indicators of Compromise (IOCs) within organizations’ IT environments based on the latest information from real, active breach investigations performed worldwide. With this data, Active Breach & Intel Monitoring module searches customers’ data for IOC matches from the present to the previous 30+ days.

As a SaaS-based solution, Mandiant Active Breach & Intel Monitoring is easy to deploy and immediately begins detecting and prioritizing IOC matches. To help security teams and leaders focus on the highest priority alerts, the solution goes beyond simple matching, by analyzing and evaluating IOCs with a data science-based score and numerous contextual factors, such as direction of travel and indicator type. Security teams can then more efficiently address and respond to threat alerts.

With Active Breach & Intel Monitoring, security teams of all sizes can rapidly identify potential attacks that match IOCs for cyber attacks and reduce threat actor dwell time to reduce the impact of targeted attacks.

Ransomware Defense Validation

Ransomware Defense Validation tests organizations’ critical security controls against prevalent ransomware and informs security teams of capabilities that require immediate attention.

“Organizations of all sizes are struggling to answer basic questions as ransomware attacks are on the rise and they’re working to determine if they’re prepared or have been breached,” said Chris Key, Chief Product Officer, Mandiant. “With Ransomware Defense Validation, we are providing a solution that will arm organizations with the tools and Mandiant’s knowledge to measure and improve ransomware preparedness like never before. Organizations no matter their size can within hours test their defenses against ransomware attacks utilizing current and relevant threat intelligence.”

Powered by Mandiant frontline threat intelligence on active ransomware attackers and their tactics, techniques, and procedures (TTPs), Ransomware Defense Validation tests an organization’s critical security controls and identifies changes required to be made to their defenses to block or contain modern and prevalent known ransomware attacks.

With Ransomware Defense Validation, security teams have 24x7 access to reports with quantitative data and readouts from Mandiant experts to inform key stakeholders of the organization’s state of readiness against the threat of ransomware.

Together, Ransomware Defense Validation and Active Breach & Intel Monitoring prepare organizations of all sizes to defend against the most sophisticated threats of today.

Mandiant Cyber Defense Summit 2021 attendees are invited to join Chief Product Officer Chris Key, livestreamed and in-person, during his keynote on Tuesday, October 5th at 10:05am E.T.


Blog: Active Breach & Intel Monitoring

Blog: Ransomware Defense Validation

About Mandiant, Inc. 

Since 2004, Mandiant® has been a trusted partner to security-conscious organizations. Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.

Forward-Looking Statements

This press release contains forward-looking statements, including statements related to the expectations, beliefs, features, capabilities, benefits and availability of Active Breach & Intel Monitoring and Ransomware Defense Validation. These forward-looking statements involve risks and uncertainties, as well as assumptions which, if they do not fully materialize or prove incorrect, could cause Mandiant’s results to differ materially from those expressed or implied by such forward-looking statements. The risks and uncertainties that could cause Mandiant’s results to differ materially from those expressed or implied by such forward-looking statements include customer demand and adoption of Mandiant offerings; real or perceived defects, errors or vulnerabilities in Mandiant offerings; the ability of Mandiant to retain and recruit highly experienced and qualified personnel; rapidly evolving technological developments in a market that is characterized by rapid changes in technology, customer requirements, industry standards, and frequent new product introductions and improvements; and general market, political, economic, and business conditions; as well as those risks and uncertainties included under the captions "Risk Factors" and "Management's Discussion and Analysis of Financial Condition and Results of Operations," in Mandiant's Form 10-Q filed with the Securities and Exchange Commission on August 9, 2021, which is available on the Investor Relations section of the company's website at and on the SEC website at All forward-looking statements in this press release are based on information available to the company as of the date hereof, and Mandiant does not assume any obligation to update the forward-looking statements provided to reflect events that occur or circumstances that exist after the date on which they were made. Any future product, service, feature, benefit or related specification that may be referenced in this release is for information purposes only and is not a commitment to deliver any technology or enhancement. Mandiant reserves the right to modify future product and services plans at any time.

© 2021 Mandiant, Inc. All rights reserved. Mandiant is a registered trademark of Mandiant, Inc. in the United States and other countries. All other brands, products, or service names are or may be trademarks or service marks of their respective owners.