Intel Security


Shared threat intelligence to fight targeted attacks

McAfee Threat Intelligence Exchange optimizes threat detection and response by closing the gap from malware encounter to containment from days, weeks, and months down to milliseconds. This collaborative system operationalizes threat intelligence data in real time, delivering protection to all points in your enterprise as new threats emerge.

Leveraging the McAfee Data Exchange Layer (DXL), McAfee Threat Intelligence Exchange integrates multiple threat information sources, and shares data out to all your security solutions, including third-party solutions, instantly. It provides adaptive cyberthreat detection for unknown files, resulting in faster time to protection and lower costs.

Download Data Sheet

Uniting security components to act as one

Immediate visibility into the presence of advanced targeted attacks

Integrated intelligence and contextual data bring deeper threat analytics, enabling better decision-making to handle never-before-seen and potentially malicious files.

Operationalize threat intelligence in real time

Integrate threat data from McAfee Global Threat Intelligence, third parties, and shared IOCs. Gather real-time and historical data from endpoints, gateways, the network, and the McAfee Advanced Threat Defense sandboxing solution, and share in real time.

Create a collaborative threat intelligence ecosystem

The McAfee DXL enables security components to dynamically join McAfee Threat Intelligence Exchange. Protection against an emerging attack is propagated across your enterprise in milliseconds, sharing data with McAfee solutions and third-party security products.

Supercharge endpoint protection

Using the McAfee VirusScan Enterprise module, combine intelligence from local endpoints and broader, collective threat intelligence to make accurate file execution decisions and customize policies based on your risk tolerance level.

Lower security cost of ownership

Reduce costs by integrating your existing McAfee security detection, prevention, and analytic technology to protect your organization as soon as a threat is revealed.

Advanced targeted attacks: It takes a system

Read White Paper
Connected Security Yields Smarter Defenses

Connected Security Yields Smarter Defenses

When you enable endpoint, gateway, network, and SIEM security components to share threat intelligence, you can operationalize threat intelligence in real time—and stop targeted attacks and breaches faster than ever.

Download Infographic


System Requirements

McAfee Threat Intelligence Exchange consists of the following components:

  • McAfee Threat Intelligence Exchange Server 1.0
  • McAfee Data Exchange Layer Client 1.0
  • McAfee Threat Intelligence Exchange Module 1.0 for VirusScan Enterprise

Additional requirements for McAfee Threat Intelligence Exchange include:

  • McAfee Endpoint Protection
    • McAfee VirusScan Enterprise 8.8, Patch 4 with Hotfix 929019
  • McAfee Security Management
    • McAfee ePolicy Orchestrator 5.1.1
  • Virtualization Infrastructure
    • VMWare ESXi 5.1.0 and above (McAfee Threat Intelligence Exchange Server is a hardened virtual appliance delivered as an OVA that is pre-configured with 16 GB of RAM and 8 CPU)

Need additional technical information? Visit the McAfee Expert Center.