Intel Security


Shared threat intelligence to fight targeted attacks

McAfee Threat Intelligence Exchange optimizes threat detection and response by closing the gap from malware encounter to containment from days, weeks, and months down to milliseconds. This collaborative system operationalizes threat intelligence data in real time, delivering protection to all points in your enterprise as new threats emerge.

Leveraging the McAfee Data Exchange Layer (DXL), McAfee Threat Intelligence Exchange combines multiple threat information sources, and instantly shares this data out to all your connected security solutions, including third-party solutions. It provides adaptive threat detection on unknown files, resulting in faster time to protection and lower costs.

Download Data Sheet

Uniting security components to act as one

Immediate visibility into the presence of advanced targeted attacks

Integrated intelligence from multiple sources combined with contextual data from the encounter enable better decision-making to handle never-before-seen and potentially malicious files.

Operationalize global and local threat intelligence in real time

Combine imported threat information from McAfee Global Threat Intelligence, third parties, and STIX files with locally collected intelligence from your security solutions and share across your entire network in real time.

Create a collaborative threat intelligence ecosystem

The McAfee DXL joins together disparate security solutions. Protection against an emerging attack is propagated instantly and shared to both McAfee and third-party security products.

Supercharge endpoint protection

Using the McAfee VirusScan Enterprise module, combine intelligence from local endpoints and broader, collective threat intelligence to make accurate file execution decisions and customize policies based on your risk tolerance level.

Lower security cost of ownership

Reduce costs by integrating your existing McAfee security detection, prevention, and analytic technology to protect your organization as soon as a threat is revealed.

Advanced targeted attacks: It takes a system

Read White Paper
Connected Security Yields Smarter Defenses

Connected Security Yields Smarter Defenses

When you enable endpoint, gateway, network, and SIEM security components to share threat intelligence, you can operationalize threat intelligence in real time—and stop targeted attacks and breaches faster than ever.

Download Infographic


System Requirements

McAfee Threat Intelligence Exchange consists of the following components:

  • McAfee Threat Intelligence Exchange Server 1.2.0
  • McAfee Data Exchange Layer Client 1.1.0
  • McAfee Threat Intelligence Exchange Module 1.0.1 for VirusScan Enterprise

Additional requirements for McAfee Threat Intelligence Exchange include:

  • McAfee Endpoint Protection
    • McAfee VirusScan Enterprise 8.8, Patch 4 with Hotfix 929019
  • McAfee Security Management
    • McAfee ePolicy Orchestrator 5.1.1
  • Virtualization Infrastructure
    • VMWare ESXi 5.1.0 and above (McAfee Threat Intelligence Exchange Server is a hardened virtual appliance delivered as an OVA that is pre-configured with 16 GB of RAM and 8 CPU)

Need additional technical information? Visit the McAfee Expert Center.