{"id":215482,"date":"2026-02-13T10:05:00","date_gmt":"2026-02-13T15:05:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/02\/13\/turning-ibm-qradar-alerts-into-action-with-criminal-ip\/"},"modified":"2026-02-19T20:15:20","modified_gmt":"2026-02-20T01:15:20","slug":"turning-ibm-qradar-alerts-into-action-with-criminal-ip","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/02\/13\/turning-ibm-qradar-alerts-into-action-with-criminal-ip\/","title":{"rendered":"Turning IBM QRadar Alerts into Action with Criminal IP"},"content":{"rendered":"<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/turning-ibm-qradar-alerts-into-action-with-criminal-ip\/\">Turning IBM QRadar Alerts into Action with Criminal IP<\/a><\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/turning-ibm-qradar-alerts-into-action-with-criminal-ip\/\">https:\/\/www.bleepingcomputer.com\/news\/security\/turning-ibm-qradar-alerts-into-action-with-criminal-ip\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-02-13 10:05:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.bleepingcomputer.com\">www.bleepingcomputer.com<\/a><\/p>\n<p style=\"text-align:center\">\n<p>Criminal IP (criminalip.io), the AI-powered threat intelligence and attack surface intelligence platform, is now integrated with IBM QRadar SIEM and QRadar SOAR.<\/p>\n<p>The integration brings external, IP-based threat intelligence directly into IBM QRadar\u2019s detection, investigation, and response workflows, enabling security teams to identify malicious activity faster and prioritize response actions more effectively across SOC operations.<\/p>\n<p>IBM QRadar is widely adopted by enterprises and public-sector organizations as a central platform for security monitoring, automation, and incident response.<\/p>\n<p>By embedding Criminal IP intelligence into QRadar SIEM and extending it into SOAR workflows, organizations can apply external threat context across the incident lifecycle without leaving the QRadar environment.<\/p>\n<h2>Real-Time Threat Visibility from Firewall Traffic Logs<\/h2>\n<p>With the Criminal IP QRadar SIEM integration, security teams can analyze firewall traffic logs and automatically assess the risk associated with communicating IP addresses.<\/p>\n<p>Traffic data forwarded into IBM QRadar SIEM is analyzed through the Criminal IP API and reflected directly inside the SIEM interface.<\/p>\n<p>Observed IP addresses are automatically classified into High, Medium, or Low risk levels from a threat intelligence perspective.<\/p>\n<p>This allows SOC teams to quickly identify high-risk IPs, monitor inbound and outbound traffic, and prioritize response actions such as access blocking or escalation within the familiar QRadar SIEM workflow.<\/p>\n<p>Access Criminal IP&#8217;s Threat Intelligence needed to proactively identify, analyze, and respond to emerging threats.<\/p>\n<p>Powered by AI and OSINT, it delivers threat scoring, reputation data, and real-time detection of a wide array of malicious indicators, ranging from C2 servers and IOCs to masking services like VPNs, proxies, and anonymous VPNs, across IPs, domains, and URLs. Its API-first architecture ensures seamless integration into security workflows to boost&#8230;<\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/turning-ibm-qradar-alerts-into-action-with-criminal-ip\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Turning IBM QRadar Alerts into Action with Criminal IP https:\/\/www.bleepingcomputer.com\/news\/security\/turning-ibm-qradar-alerts-into-action-with-criminal-ip\/ Publish Date: 2026-02-13 10:05:00 Source&#8230;<\/p>\n","protected":false},"author":1,"featured_media":215483,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.bleepstatic.com\/content\/posts\/2026\/02\/11\/criminal-ip-ibm.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26],"class_list":["post-215482","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/215482"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=215482"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/215482\/revisions"}],"predecessor-version":[{"id":215484,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/215482\/revisions\/215484"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/215483"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=215482"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=215482"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=215482"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}