Visa and FireEye are stepping up their partnership for payments security.
After first teaming up in June on the launch of a secure cyber-threat sharing community, the companies today announced an overall expansion of their cybersecurity offering, now being dubbed Visa Threat Intelligence, Powered by FireEye.
The subscription-based service includes a web portal where Visa clients can share and view cyber intelligence, forensic threat analysis from recent data breaches, and information on malicious software.
For more sophisticated users, the companies are offering APIs that can automatically feed threat indicator data into a company's own security system. FireEye is also throwing in its virtual execution engine technology to help businesses proactively identify malicious malware from IP addresses and domains.
Previously, the partnership between the companies was branded as the Visa and FireEye Community Threat Intelligence offering, and it seems as though the threat-sharing community is now folded into the broader security product.
As was the case before, the service is geared toward retailers and card issuers, with the latter referring to banks that issue Visa-branded debit and credit cards. Picture a CIO from one Visa client uploading threat and malware information to the web portal, and another CIO having access to that information within an hour.
According to Visa, the ultimate goal with the program is to identify a breach, or a potential breach, before data can be used or compromised.
The practice of cyber-threat sharing is gaining support in both the retail and tech communities, and also in Washington. Last year the National Retail Federation created its own cybersecurity cooperative to help retailers share threats with each other, as well as with government agencies, law enforcement and partners in the financial services sector.
In March, the House of Representatives Intelligence Committee introduced a bill which would make sharing cybersecurity data easier for companies by removing the prospect of potential litigation.
The bill has received some pushback by security experts, however. In April, a group of security specialists said threat-sharing is already possible without the need of legislation, and that the bill could actually make it harder to spot the clues that can prevent further attacks.