World Crime Feeds - OneFirewall WCF
World Crime Feeds (WCF) contains real time data for cyber-attacks across the globe. WCF is powered using the following four main sources:
- Cyber-attacks feeds from Alliance Members Submissions
- Open Source Threat Feeds (Emerging threats, AlienVault, etc…)
- Security Partners and Paid services (Kaspersky Labs, etc…)
- OneEye Forecast (offered only to enterprise customers)
WCF indexes are currently: 1.5 million IPv4 Networks 600 million single IPv4 address (~7% of the total internet)
As the IPs are fluid during the span of the time and cyber actors constantly change network and location, OneFirewall developed a propriety algorithm to decline the importance of these events during the time. From the current Data Base the total IPs that are blocked from customers are ~511k (~0.6% of the total internet is blocked). The service is offered via online subscription and is consumable via HTTP API, API documentation is available, however most of our customers are expected to use WCF-Agent to interact with WCF. For enterprise-subscribed customer OneFirewall offers the free of charge development of new or custom plugins of WCF Agent. More details about the cyber-crime sources are described below.