OTX + USM™ = Awesome
When you sign up for AlienVault Open Threat Exchange (OTX) and connect it to an AlienVault Unified Security Management (USM) instance, the USM platform will receive threat data directly from OTX pulses. Pulses provide a summary of the threat, a view into the software targeted, and the related Indicators of Compromise (IoC) that you can use to detect the threats. They come from community-created OTX pulses and security events voluntarily contributed by USM and OSSIM users.
The USM platform correlates the OTX data and alerts you when it detects IOCs from the OTX system interacting with assets in your environment. The alerts could include communication with known malicious IPs, detection of malware used in an emerging threat in your network , or outbound communication with command and control (C&C) servers.
Connecting OTX to your USM platform helps you to manage risk better and effectively take action on threats. OTX data complements the Threat Intelligence Subscription delivered by the AlienVault Labs team by providing visibility into emerging threat indicators active in your network: