Threat Stack Unveils Machine Learning Capabilities in The Threat Stack Cloud Security Platform

Published November 09, 2020


Suzanne DuLong
VP, Investor Relations
(206) 272-7049

Holly Lancaster
WE Communications
(415) 547-7054

Threat Stack now combines telemetry collection, security rules, human expertise and machine learning capabilities, empowering customers to detect both known and unknown risk with context

BOSTON, Mass. — Threat Stack, the leader in cloud security and compliance for infrastructure and applications, today announced ThreatML™, its new machine learning engine that enhances security observability for the Threat Stack Cloud Security Platform®, Threat Stack Oversight℠, and Threat Stack Insight℠ with anomaly detection. 

The Threat Stack Cloud Security Platform collects, normalizes, and analyzes over 60 billion events per day from customer cloud infrastructure and applications. ThreatML leverages this rich telemetry to train its machine learning models, which are then used to detect anomalous behavior. Together, Threat Stack’s rules engine and advanced machine learning capabilities allow customers to quickly detect, prioritize, and respond to both known and unknown threats.

Threat Stack’s approach to cloud security is unique. By combining full-stack telemetry, machine learning, rules, and human expertise, Threat Stack empowers security teams to accelerate mean-time-to-know (MTTK), focus on high-severity threats, save time, and reduce cost.

“We’re thrilled about the addition of machine learning to the Threat Stack Cloud Security Platform, Oversight and Insight,” said Anthony Moisant, CIO, Glassdoor. “Threat Stack’s combination of platform and services has always provided us with extremely detailed security telemetry and actionable recommendations on risk mitigation. Applying anomaly detection on top of that will be a huge benefit to our security team as we continue to evolve and grow our cloud infrastructure.”

“Machine learning is often promoted as a silver bullet solution to all problems,” said Brian Ahern, CEO, Threat Stack. “With the introduction of ThreatML we are combining the industry’s best security telemetry, rules engine, human expertise, and now machine learning to create a truly powerful cloud security solution capable of detecting known and unknown risks. This provides our customers with better security coverage, unparalleled contextual findings, and cost benefits by reducing mean time to know and respond to threats.”

To learn more about ThreatML and how Threat Stack is combining cloud infrastructure telemetry, rules, human expertise, and machine learning to detect both known and unknown risk in cloud environments, visit: and register for the upcoming webinar titled Introducing ThreatML by Threat Stack: ML-based Anomaly Detection to Accelerate Cloud Security and Compliance. A beta of ThreatML will be available for Threat Stack customers in 2020.

Threat Stack is now F5 Distributed Cloud App Infrastructure Protection (AIP). Start using Distributed Cloud AIP with your team today.

About F5

F5 is a multi-cloud application services and security company committed to bringing a better digital world to life.​​​​​​​ F5 partners with the world’s largest, most advanced organizations to secure and optimize every app and API anywhere—on premises, in the cloud, or at the edge. F5 enables organizations to provide exceptional, secure digital experiences for their customers and continuously stay ahead of threats. For more information, go to (NASDAQ: FFIV)

You can also follow @F5 on Twitter or visit us on LinkedIn and Facebook for more information about F5, its partners, and technologies. F5 is a trademark, service mark, or tradename of F5, Inc., in the U.S. and other countries. All other product and company names herein may be trademarks of their respective owners.

# # #

This press release may contain forward looking statements relating to future events or future financial performance that involve risks and uncertainties. Such statements can be identified by terminology such as "may," "will," "should," "expects," "plans," "anticipates," "believes," "estimates," "predicts," "potential," or "continue," or the negative of such terms or comparable terms. These statements are only predictions and actual results could differ materially from those anticipated in these statements based upon a number of factors including those identified in the company's filings with the SEC.