Thanks to this partnership, cybersecurity teams can now directly access VMRay’s indicators within OpenCTI. Contextualized and immediately actionable, these indicators help save time in investigations and strengthen early attack detection.
Paris, October 13, 2025 – Filigran, the European cybertech company specializing in open-source cybersecurity solutions, and VMRay, the German pioneer in advanced malware and phishing analysis, today announced a strategic partnership. The collaboration will make VMRay’s UniqueSignal feed—renowned for its rich context and high reliability—directly available within OpenCTI.
A Partnership Born from Field Needs
This initiative originated from requests expressed by many joint users of VMRay and OpenCTI. Several large enterprises and government organizations already rely on Filigran’s platform to structure and enrich their threat intelligence feeds.
“This partnership with VMRay illustrates our commitment to providing cybersecurity teams with immediate access to reliable, contextualized intelligence that is ready to be used in their investigations,” said Samuel Hassine, CEO and co-founder of Filigran. “By integrating UniqueSignal into OpenCTI, we make it easier to adopt threat-led cyber defense, benefiting the most exposed companies and government bodies.”
“With UniqueSignal, we want to give cyber teams reliable and directly actionable intelligence,” explained Dr. Carsten Willems, CEO and co-founder of VMRay. “This partnership with Filigran allows them to access it directly within OpenCTI in a simple and immediate way.”
Unique Expertise in Malware Analysis
Founded in 2013 in Bochum, at the heart of Germany’s cybersecurity ecosystem, VMRay has established itself as a leader thanks to its advanced malware analysis technology. Its UniqueSignal feed draws on proprietary sources (spam traps, honeypots, partner networks) and more than ten years of reverse-engineering research.
Each indicator is enriched with detailed information: type of malware, targeted sector, attack methods used, and malicious actors involved. An independent assessment showed that more than 90% of the data provided by VMRay is unique and available earlier than through other sources.
Plug-and-Play Integration with OpenCTI
OpenCTI users can now access VMRay’s UniqueSignal feed without complex setup. Indicators appear directly in their interface, enabling them to:
- Detect emerging threats earlier, including initial attack stages that often lead to ransomware;
- Enrich and correlate investigations with reliable, contextualized data;
- Anticipate malicious campaigns and reduce the risk of costly data breaches.
Benefits and Next Steps
Early feedback from pilot customers highlights both the ease of integration and the complementarity between the UniqueSignal feed and OpenCTI’s graphical knowledge base. Combining VMRay’s behavioral insights with Filigran’s correlation power delivers to cyber teams:
- Significant time savings: direct access to contextualized indicators without technical integration.
- Greater accuracy: over 90% of the data is unique and non-redundant.
- Advanced detection: early identification of infections that could lead to ransomware.
- Enhanced investigations: simplified correlation thanks to OpenCTI’s knowledge graph.
- Faster responses: reduced time to qualify and block threats.
The partnership is already available to joint customers, with a 60-day evaluation period for first adopters. Filigran and VMRay also plan to strengthen community engagement through webinars, conferences, and hands-on training sessions.
About VMRay
Founded in 2013 in Bochum (Germany), VMRay specializes in advanced malware and phishing analysis. Its unique technology, based on an evasion-resistant sandbox, is trusted by leading global enterprises (finance, healthcare, industry, technology) as well as critical government bodies. Its UniqueSignal feed offers exclusive visibility into emerging threats and provides high-quality, contextualized intelligence.
About Filigran
Founded in October 2022, Filigran stands out in the cybertech ecosystem through its mission to revolutionize threat intelligence and its use within cybersecurity teams. Its goal is to design innovative open-source solutions, purpose-built to address the complex challenges organizations face in anticipating cyber risks and threats. Filigran’s solutions are used by more than 6,000 public and private organizations worldwide.
Discover other press release
Doppel and Filigran Announce Integration to Strengthen Threat Intelligence Workflows
Doppel, a leader in multi-channel social engineering defense, today announced a new technical integration with Filigran, the open-source threat intelligence platform developer behind OpenCTI.
ESET Threat Intelligence enhancing cybersecurity workflows with Filigran’s OpenCTI
ESET, a global leader in cybersecurity solutions, has announced a key strategic integration with Filigran, to integrate ESET Threat Intelligence with its OpenCTI solution.
Filigran and GLIMPS join forces to industrialize malware analysis in Threat Intelligence flows
Filigran, the European cybertech company specializing in open-source cybersecurity solutions, and GLIMPS, the French expert in AI-powered file analysis, announce their strategic partnership. This collaboration aims to industrialize Threat Intelligence flows by directly integrating GLIMPS’ malware analysis capabilities into Filigran’s OpenCTI platform.
Filigran Accelerates U.S. Expansion with Nearly 4x North America Revenue Growth, Major Enterprise Wins and Independent Recognition as a Top Cybersecurity Company
Filigran, the European open-source threat management company, today announced significant U.S. business momentum heading into RSA Conference 2026. The company grew North American annual recurring revenue nearly 4x year-over-year, added 29 new enterprise and government customers in the last year, and expanded its platform with the general availability of OpenAEV Enterprise Edition, establishing Filigran as one of the fastest-growing cybersecurity companies in the market.
Filigran and Intrinsec strengthen their partnership to turn Cyber Threat Intelligence into a strategic advantage
Following the success of their partnership, Intrinsec and Filigran are announcing a new stage in their collaboration. This enhanced alliance aims to provide a complete Cyber Threat Intelligence (CTI) ecosystem, combining Intrinsec’s technical and operational expertise with the advanced capabilities of the OpenCTI Enterprise Edition solution developed by Filigran.
Filigran Redefines Proactive Security: OpenBAS Rebrands to OpenAEV with an AI-Powered Enterprise Edition
Filigran is evolving OpenBAS solution into OpenAEV (Adversarial Exposure Validation), moving beyond control validation to full threat exposure management. The company is also launching OpenAEV Enterprise Edition, a paid version, with advanced automation and AI capabilities to help teams validate and reduce cyber risk.
Filigran announces a new $58 million funding round to accelerate its growth and international expansion
Cybertech company Filigran announces that it has completed a Series C funding round worth $58 million, bringing its total fundraising to over $100 million in just three years of existence. This fundraising was led by Eurazeo’s Growth team, part of the leading European investment group Eurazeo, with the support of Deutsche Telekom (T.Capital) and its long-standing investors Accel and Insight Partners.
Filigran and GLIMPS join forces to industrialize malware analysis in Threat Intelligence flows
Filigran, the European cybertech company specializing in open-source cybersecurity solutions, and GLIMPS, the French expert in AI-powered file analysis, announce their strategic partnership. This collaboration aims to industrialize Threat Intelligence flows by directly integrating GLIMPS’ malware analysis capabilities into Filigran’s OpenCTI platform.