List of Group-IB Threat Intelligence Customers
Singapore, 138634,
Singapore
Since 2010, our global team of researchers has been studying Group-IB Threat Intelligence customers around the world, aggregating massive amounts of data points that form the basis of our forecast assumptions and perhaps the rise and fall of certain vendors and their products on a quarterly basis.
Each quarter our research team identifies companies that have purchased Group-IB Threat Intelligence for Threat Modeling from public (Press Releases, Customer References, Testimonials, Case Studies and Success Stories) and proprietary sources, including the customer size, industry, location, implementation status, partner involvement, LOB Key Stakeholders and related IT decision-makers contact details.
Companies using Group-IB Threat Intelligence for Threat Modeling include: Nviso Belgium, a Belgium based Professional Services organisation with 101 employees and revenues of $33.0 million, Fawry, a Egypt based Banking and Financial Services organisation with 200 employees and revenues of $24.0 million, Sorint.Sec Italy, a Italy based Professional Services organisation with 71 employees and revenues of $15.0 million and many others.
Contact us if you need a completed and verified list of companies using Group-IB Threat Intelligence, including the breakdown by industry (21 Verticals), Geography (Region, Country, State, City), Company Size (Revenue, Employees, Asset) and related IT Decision Makers, Key Stakeholders, business and technology executives responsible for the software purchases.
The Group-IB Threat Intelligence customer wins are being incorporated in our Enterprise Applications Buyer Insight and Technographics Customer Database which has over 100 data fields that detail company usage of software systems and their digital transformation initiatives. Apps Run The World wants to become your No. 1 technographic data source!
Apply Filters For Customers
| Logo | Customer | Industry | Empl. | Revenue | Country | Vendor | Application | Category | When | SI | Insight |
|---|---|---|---|---|---|---|---|---|---|---|---|
 |
Fawry | Banking and Financial Services | 200 | $24M | Egypt | Group-IB | Group-IB Threat Intelligence | Threat Modeling | 2023 | n/a |
In 2023, Fawry engaged Group-IB Threat Intelligence to respond to a LockBit ransomware incident that targeted the company in November 2023. The engagement positioned Group-IB Threat Intelligence within the Threat Modeling category and was delivered alongside DFIR and Managed XDR services to investigate and mitigate the attack.
The implementation focused on threat intelligence ingestion and analysis workflows, forensic timeline reconstruction, and active containment supported by managed detection and response capabilities. Group-IB Threat Intelligence provided actionable indicators and timeline artefacts that guided DFIR activity and prioritized containment actions, consistent with Threat Modeling functional processes for ransomware triage and root cause analysis.
Operational scope covered Fawry as Egypts largest e payment provider within the Financial services sector in the Middle East, and the effort mainly impacted payment operations and security operations teams. The engagement validated that production payment systems were not breached, and enabled coordinated incident containment and cross team forensic alignment to rebuild event timelines.
The response produced a full network cleanup within weeks and enabled rapid incident containment and forensic timeline reconstruction, outcomes documented by Group IB in the engagement summary.
|
 |
Nviso Belgium | Professional Services | 101 | $33M | Belgium | Group-IB | Group-IB Threat Intelligence | Threat Modeling | 2024 | n/a |
In 2024, NVISO Belgium integrated Group-IB Threat Intelligence into its Threat Modeling capabilities to enrich managed detection and response, incident response, and threat-hunting services for European clients. The Group-IB Threat Intelligence deployment was scoped to NVISO’s Security services in Europe and focused on operationalizing threat data within the SOC detection stack.
Configuration work centered on automated ingestion of Group-IB indicators, IOC normalization and contextual enrichment, and mapping intelligence artifacts to NVISO’s detection pipelines and analytic rules. Group-IB Threat Intelligence was embedded as a continuous feed to support contextual analysis during triage and hunt activities.
Operational integrations enabled automated ingestion of Group-IB indicators into NVISO detection pipelines and routed enriched IOCs into SOC workflows and case management for MDR and incident response teams. The implementation covered NVISO’s SOC, threat-hunting teams, and incident responders serving European clients, aligning threat intelligence outputs with operational playbooks and detection orchestration.
Governance adjustments included formalizing enrichment and tagging processes and updating hunt and incident response playbooks to consume Group-IB outputs. The integration improved IOC integration and contextual analysis and enabled faster, more accurate detections for NVISO’s SOC, while supporting automated ingestion of Group-IB indicators into NVISO’s detection pipelines.
|
|
|
Sorint.Sec Italy | Professional Services | 71 | $15M | Italy | Group-IB | Group-IB Threat Intelligence | Threat Modeling | 2024 | n/a |
In 2024, Sorint.Sec implemented Group-IB Threat Intelligence to power its SOC as a service offering and deliver real-time, contextual threat insights and coordinated takedown support for clients in Italy. Group-IB Threat Intelligence is positioned as the companys Threat Modeling capability and anchors Sorint.Secs managed detection and response workflows with actor and TTP level context and actionable IOCs.
The implementation centralized threat feed ingestion and analytics, enrichment to produce actor and tactics techniques and procedures context, automated IOC generation, and orchestration of takedown requests. These functional modules were configured to support continuous, real-time intelligence updates and to surface prioritized context for SOC analysts during triage and investigation.
Operational scope focused on Sorint.Secs SOC as a service practice across its Italy IT services delivery, embedding Group-IB Threat Intelligence into incident response and threat hunting workflows. The deployment was instrumented to supply contextual indicators and actor attributions directly into analyst review processes, improving detection fidelity and shortening analyst time to triage.
Governance changes included formalizing threat intelligence driven escalation paths and incorporating actor and TTP context into playbooks and case handling procedures. The Project delivered explicitly stated outcomes of improved threat detection, faster triage using actor and TTP level context, and actionable IOCs that enhanced Sorint.Secs incident response and threat hunting outcomes.
|
Buyer Intent: Companies Evaluating Group-IB Threat Intelligence
Discover Software Buyers actively Evaluating Enterprise Applications
| Logo | Company | Industry | Employees | Revenue | Country | Evaluated | ||
|---|---|---|---|---|---|---|---|---|
| No data found | ||||||||