Radware Launches Advanced Threat Intelligence Services to Preempt Cyber Attacks

In an era where cyber threats can metastasize in minutes, Radware is doubling down on speed and intelligence. The cybersecurity and application delivery firm announced today two significant additions to its threat intelligence portfolio designed to give defenders a leg up: the Telegram Claimed Attacks Report and the TLS Fingerprint Reputation Feed.

These new cloud-delivered services, part of Radware’s evolving Threat Intelligence Services platform, are built to surface emerging threats in real time, enabling security teams to respond proactively rather than reactively.

“Our new TLS Fingerprint Reputation Feed and Telegram Claimed Attacks Report are part of our comprehensive, multi-layered approach to cyber security and threat management,” said Gabi Malka, Radware’s chief operating officer. “They are like an advanced warning system designed to help already time-strapped security teams stay ahead of cyber threats.”

Surfacing Signals from the Shadows

The Telegram Claimed Attacks Report taps into one of the darker corners of the internet -- Telegram channels where threat actors openly discuss and claim responsibility for cyberattacks. Using open-source intelligence techniques, Radware aggregates and analyzes these claims, correlating them with actual activity and presenting evidence-backed alerts.

Security teams get access to real-time dashboards that refresh every 15 minutes and can be filtered by industry, geographic region, or attacker group. The goal is to offer early visibility into threat actors' plans before the digital damage is done. According to Radware, this could help anticipate incoming DDoS campaigns, data breaches, or other targeted attacks.

Fingerprinting the Enemy

In parallel, Radware’s TLS Fingerprint Reputation Feed focuses on recognizing the attackers before they make it to the front gate. Transport Layer Security (TLS) fingerprinting, a technique that profiles the unique traits of encrypted traffic handshakes, allows for behavioral identification of malicious activity even when payloads are encrypted.

Radware’s approach combines global data aggregation with machine learning to continuously update a reputation feed of suspicious TLS fingerprints. These can then be blocked automatically at the handshake level before a session is ever established. Security teams can fine-tune detection thresholds, and the service integrates with Radware’s DDoS protection suite for a streamlined mitigation experience.

Automation with Clarity

What stands out in both offerings is their emphasis on usability and low operational overhead. Dashboards provide instant insight into blocked activity and policy impact, giving defenders transparency alongside control. These tools are not just about detection—they are about helping overburdened teams take decisive action without getting buried in logs or false positives.

Radware’s launch reflects a broader trend across the cybersecurity industry: turning threat intelligence from a passive feed into an actionable force multiplier. In a threat landscape where everything from nation-state espionage to hacktivist campaigns can spin up in hours, automation plus visibility is the new frontline.

By offering early warnings and frictionless blocking of malicious behavior, Radware is betting that better intelligence used smarter and faster will be the difference between withstanding an attack and becoming its next victim.