Team Cymru, the global leader in internet intelligence, has announced a strategic partnership and integration with OpenCTI, the widely adopted open-source threat intelligence platform developed by Filigran. The collaboration embeds Team Cymru’s Pure Signal intelligence and Scout capabilities directly into OpenCTI, providing defenders with instant global enrichment, automated threat hunting, and unified context without leaving the platform.
The integration replaces manual lookups and tool pivots with on-demand enrichment directly in OpenCTI. Security teams can quickly assess whether an indicator represents a command-and-control server, anonymization service, or part of a larger adversary campaign. This immediate clarity shortens triage time and enables faster, more confident response decisions.
By combining internal telemetry with Team Cymru’s global perspective on NetFlow-derived insights, infrastructure classifications, and traffic patterns, organizations achieve a more complete view of threats and the actors behind them.
The partnership shifts operations from reactive to proactive. Automated playbooks continuously scan for newly established malicious infrastructure, such as ransomware setups or state-aligned activity, allowing defenders to detect and disrupt threats early. Dynamic indicator generation turns Scout search results into STIX objects, supporting ongoing monitoring, alerting, and community sharing within the OpenCTI ecosystem.
“Team Cymru’s mission is to empower the world’s defenders with the most comprehensive visibility into malicious activity,” said Will Baxter, Senior Security Researcher at Team Cymru. “Integrating Pure Signal with OpenCTI gives security teams an unmatched analytic advantage by enriching investigations with high-quality, globally-sourced intelligence from day zero.”
From Filigran’s perspective, the integration enhances operational value while reinforcing open collaboration.
“The strength of the threat-intelligence community comes from openness and collaboration. Integrating Team Cymru’s Pure Signal with OpenCTI empowers defenders everywhere with richer context and faster analytic workflows, all while preserving the transparency and extensibility of our platform. We are proud to partner with an organization committed to elevating the global security ecosystem,” said Samuel Hassine, CEO and Co-Founder of Filigran.
This partnership equips analysts with expanded visibility—comparable to shifting from internal building cameras to an entire city’s traffic network—enabling earlier threat detection and more effective defense.
About Team Cymru
Team Cymru is the trusted intelligence partner to the world’s most targeted organizations, transforming unmatched global visibility into actionable insights that protect nations, businesses, and communities. Powered by Pure Signal™, the largest source of context-rich telemetry beyond the network edge, Team Cymru empowers defenders by reducing noise, accelerating decision-making, and driving real-world outcomes. From threat hunting and CTI to third-party risk and national defense, our solutions provide instant clarity and unmatched visibility. Through our Community Services, we also deliver no-cost threat detection, DDoS mitigation, and intelligence to over 177 CSIRTs across 85+ countries.
About Filigran
Founded in October 2022, Filigran stands out in the cybertech ecosystem through its commitment to transforming threat intelligence and how cybersecurity teams use it. Its mission is to develop innovative open source solutions specifically designed to address the complex challenges organizations face in anticipating cyber risks and threats. Filigran solutions are used by more than 6,000 public and private organizations worldwide. In October 2025, Filigran raised €50 million in a Series C round, bringing its total funding to €100 million in just three years.
TechIntelPro empowers B2B technology decision-makers with the latest industry trends, deep insights, leadership perspectives and actionable intelligence to drive both organizational and professional milestones—and thrive on the tech pulse.