IBM(US:IBM) Globenewswire·2026-02-09 14:00Core Insights - Criminal IP has integrated its AI-powered threat intelligence platform with IBM QRadar SIEM and QRadar SOAR, enhancing security teams' ability to identify and respond to malicious activities more effectively [2][11]. Integration Benefits - The integration allows external, IP-based threat intelligence to be embedded directly into IBM QRadar's detection, investigation, and response workflows, streamlining security operations [3][11]. - Security teams can analyze firewall traffic logs and assess risks associated with communicating IP addresses through the Criminal IP API within the QRadar interface [4][5]. Risk Assessment - Observed IP addresses are classified into High, Medium, or Low risk levels, enabling SOC teams to prioritize response actions such as access blocking [5][11]. - The integration supports fast, in-context investigations, allowing analysts to access detailed Criminal IP reports directly from QRadar Log Activity [8][9]. Automated Incident Response - Criminal IP is integrated with QRadar SOAR to facilitate automated threat enrichment during incident response, reducing the need for manual lookups [10][11]. - Pre-built playbooks allow for the application of Criminal IP intelligence to IP addresses and URL artifacts, enhancing incident response efficiency [10]. Enhanced Detection and Response - The integration improves detection accuracy, shortens investigation cycles, and enhances response prioritization across SOC operations by combining QRadar's capabilities with external threat intelligence [11][12]. - As alert volumes increase, Criminal IP aids QRadar users in making faster, more informed decisions without adding operational complexity [12][13]. Company Overview - Criminal IP is a flagship cyber threat intelligence platform developed by AI SPERA, utilized in over 150 countries, providing actionable threat intelligence for proactive threat identification and response [15][16].