We’re well into the new year and moving fast with our latest updates. This month, we’re closing the visibility gaps that modern adversaries use to bypass traditional geo-fencing and identity controls with the launch of Silent Push Traffic Origin.
By exposing the true upstream country-of-origin behind residential proxies, VPNs, and laptop farms, Traffic Origin provides “origin certainty” for KYC, KYE, AML, and fraud workflows. This allows investigators to identify high-risk sessions earlier, improving regulatory compliance and avoiding the fines associated with sanctioned-region access and identity deception.
Traffic Origin
Traffic Origin unmasks the infrastructure behind residential proxies, VPNs, and laptop farms. It allows security teams to identify the high-risk or sanctioned region where a session originates, even when the surface IP appears domestic or clean.
- Upstream Attribution: Safely identify and block “origin mismatches” without disrupting legitimate users.
- Sanctioned Region Detection: Flag traffic originating from regions such as the DPRK, Iran, or Russia that is hidden behind obfuscated paths.
- Total View Integration: A new tab provides Map and Table views to correlate surface geolocation with hidden upstream links.
Threat Check
Threat Check is now available as a native module in the Silent Push platform, enabling centralized validation of high-volume indicators across multiple data sources
- Native IOFA™ Integration: Validate IPs, domains, and hashes against proprietary Indicators of Future Attack™ (IOFA™) feeds.
- Consolidated Risk Logic: Threat Check now automatically incorporates Traffic Origin data to detect sanctioned country routing during lookups.
- On-Demand Validation: Support for unlimited queries to identify attacker infrastructure before it is used in an active campaign.
Platform Performance
The console has been updated to unify the investigative experience and increase processing speed.
- Unified Search: A standalone module that serves as the single entry point for querying all Silent Push data sources.
- Asynchronous Processing: Full migration to the latest SPQL version enables faster result delivery without session disruption.
- Navigation Update: A redesigned landing page and consolidated similarity data reduce the steps required to pivot between indicators.
Traffic Origin and Threat Check are available now for Enterprise Edition customers. Contact your account team to enable Traffic Origin permissions for your organization.
New to Silent Push? See how Traffic Origin provides origin certainty for your SOC or Compliance team. Book a demo with our platform experts today.
