Proactive, internet-scale, AI-powered menace intelligence meets cloud-native simplicity
Cloud-native environments are dealing with an unprecedented surge in cyberattacks. In 2025, malware threats grew by over 30% within the first half of 2024, with 560,000 new variants detected every day and 70% of great incidents involving fileless malware that evades conventional defenses.¹ Attackers more and more depend on malicious proxy networks embedded in residential IP house to obfuscate site visitors and bypass perimeter controls.
Community firewalls are foundational for perimeter safety; nonetheless, their effectiveness is diminished by evasive techniques and quickly shifting adversary infrastructure that conventional menace intelligence powering the firewalls can’t detect. What’s wanted is menace intelligence that’s proactive, dynamic and on an web scale—intelligence that may see suspicious infrastructure because it’s being stood up, not after it’s energetic with affected person zero.
That’s the place Lumen DefenderSM Managed Guidelines is available in, constructed for community safety groups, CISOs and cloud practitioners. Powered by Black Lotus Labs®, this brings safety derived from the Lumen web community spine visibility instantly into AWS environments.
Lumen and AWS redefining community safety
The collaboration between Lumen and AWS is constructed on a shared imaginative and prescient—empowering organizations to defend in opposition to trendy threats with agility and precision and making firewalls simpler via proactive menace intelligence.
What’s AWS asserting?
AWS introduced the launch of totally managed rule teams by safety distributors, together with Lumen, for AWS Community Firewall. This new characteristic permits clients to leverage pre-configured, expert-curated rule units that seamlessly combine third-party menace intelligence from main safety distributors instantly inside their AWS Community Firewall insurance policies. These rule teams are ceaselessly up to date by safety distributors to replicate the most recent menace panorama, offering clients with up-to-date safety with out the necessity for writing their very own customized guidelines. To study extra, go to AWS Community Firewall documentation.
What’s Lumen asserting?
Lumen is proud to be an early accomplice for AWS Market Managed Guidelines by launching Lumen Defender Managed Guidelines for AWS Community Firewall. Prospects can subscribe to the rule group and apply it to their firewalls from AWS Community Firewall console. With this rule group, clients acquire entry to Black Lotus Labs menace intelligence, permitting speedy integration of menace information to guard vital cloud deployments.
What does this imply to community safety groups and CISOs?
Defender Managed Guidelines, powered by Black Lotus Labs Risk Intelligence, are mechanically utilized to community site visitors, designed to dam entry to dangerous IPs. Prospects can benefit from the next advantages:
- Spine visibility: Leverage high-risk IPs sourced and curated from Lumen international community infrastructure and menace researchers
- Managed overhead: Absolutely managed by Lumen with computerized updates and no guide rule upkeep required
- Consumption-based pricing: Versatile pricing mannequin that aligns with real-world utilization
- Simplified administration: Centralized firewall coverage administration via AWS Community Firewall, eliminating the necessity for a number of instruments and interfaces
The way it works: A practitioner’s information
From a practitioner’s perspective, setup is straightforward:
- Community Firewall and Safety groups subscribe to the Lumen Managed Rule group and connect it to their AWS Community Firewall insurance policies.
- Lumen delivers curated menace feeds as Suricata-compatible guidelines by way of AWS Market to buyer firewalls.
- Lumen mechanically updates menace feeds with zero infrastructure deployment for the shopper.
- Lumen offers contextual metadata resembling menace class and severity enabling safety groups to triage and reply to incidents extra successfully.
- All administration happens inside AWS console, streamlining operations and lowering software sprawl to reinforce the group’s total safety posture.
Black Lotus Labs menace intelligence: Unmatched community visibility
Black Lotus Labs is the Lumen Risk Analysis and Operations division—a multidisciplinary workforce of information scientists, reverse engineers, safety engineers and menace analysts who concentrate on detecting, monitoring and disrupting digital threats worldwide. What units Black Lotus Labs aside is their unmatched community visibility:
- Direct entry to the Lumen web spine. Lumen operates one of many world’s most interconnected web backbones—giving Black Lotus Labs visibility into an enormous portion of world web exercise, together with malicious site visitors. Black Lotus Labs, the Lumen menace intelligence workforce, screens this spine, figuring out suspicious infrastructure earlier than assaults attain victims. This upstream vantage level allows early detection of threats—usually earlier than affected person zero is contaminated.
- Monitoring of two.3 million distinctive threats throughout botnets, malware, C2 networks, prison proxies, nation-state operation and 46,000 command-and-control (C2) servers. The analysis workforce can quickly determine patterns of malicious conduct at web scale utilizing superior detection and machine studying algorithms, which might validate IOCs with excessive constancy earlier than they will attain Lumen clients.
- Visibility into 99% of all public IPv4 addresses by way of transit site visitors. This issues as a result of it offers probably the most protection throughout the handle house than some other vendor.
- Execute over ~150 C2 disruptions monthly via takedowns and notifications.
Instance detections embody:
- Raptor Prepare – Black Lotus Labs revealed the most important identified Chinese language state-sponsored botnet to this point. Collaborated with U.S. legislation enforcement takedown.
- KV Botnet – Found novel menace infrastructure to deploy and management disruptive malware implanted in vital U.S. infrastructure.
- Qakbot -Scaled visibility into beforehand unknown infrastructure utilized by Qakbot to attain unprecedented agility.
Discover blogs from Black Lotus Labs about our newest analysis on takedowns.
Why this issues: Reworking firewall community safety for the fashionable enterprise
In right now’s setting, adversaries leverage encrypted tunnels, proxy chains and compromised routers to evade detection. Lumen Defender Managed Guidelines handle these invisible assault vectors, offering organizations with the upstream visibility and automatic intelligence wanted to guard their networks proactively.
Be a part of the firewall revolution—form the way forward for community protection with Lumen and AWS
Lumen invitations you to hitch us in advancing menace intelligence-enabled firewalls. You may entry our companies on the AWS Market or configure Lumen Defender Managed Guidelines in your accessible AWS NFWs.
¹SentinelOne, Key Cyber Safety Statistics for 2025, July 2025.
This content material is offered for informational functions solely and will require extra analysis and substantiation by the tip consumer. As well as, the knowledge is offered “as is” with none guarantee or situation of any type, both specific or implied. Use of this info is on the finish consumer’s personal threat. Lumen doesn’t warrant that the knowledge will meet the tip consumer’s necessities or that the implementation or utilization of this info will end result within the desired end result of the tip consumer. All third-party firm and services or products names referenced on this article are for identification functions solely and don’t suggest endorsement or affiliation with Lumen. This doc represents Lumen merchandise and choices as of the date of difficulty. Providers not accessible all over the place. Lumen could change or cancel services and products or substitute comparable services and products at its sole discretion with out discover. ©2025 Lumen Applied sciences. All Rights Reserved.
Submit Views: 1
