Alert: Network connection lost after upgrading to macOS 15 with ESET macOS product v6

[KB8315] ESET Threat Intelligence with OpenCTI

Issue

You need to utilize the OpenCTI TAXII2 ingester to ingest ESET Threat Intelligence feed data

Solution

Before you proceed

See the drop-down menu of available TAXII feeds, including the TAXII server URL and TAXII Collection ID.

To find your TAXII credentials, username, or password, see how to activate a TAXII feed.

In the OpenCTI dashboard main menu, click Data > Ingestion to open the Connectors section.
From the right panel, select TAXII Feeds.
Click the (+) icon on the bottom right corner of the screen.

Figure 1-1
In the Create a TAXII ingester window, fill in the TAXII feed details described below and then click Create to create a new feed.
- Name: Name of the feed (for example, ETI Botnet feed)
- Description: Fill in a description of the feed (optional)
- TAXII server URL: Copy your URL of ESET Threat Intelligence TAXII 2.x API root (for example, https://taxii.eset.com/taxii2/643f4eb5-f8b7-46a3-a606-6d61d5ce223a)
- TAXII version: TAXII 2.1
- TAXII Collection: Copy your TAXII Collection ID (for example, 0abb06690b0b47e49cd7794396b76b20)
- Authentication type: Select Basic user/password from the drop-down menu
- Username and Password: to get your credentials, follow How to activate a TAXII feed
- User responsible for data creation: You can leave this field empty
- Import from date: Select a date no earlier than the previous day

Figure 1-2 — Figure 1-2

OpenCTI Documentation

See a list of all available OpenCTI integrations.
More information on how to set up OpenCTI ingesters.

Last Updated: Apr 24, 2025

Additional resources

User Guides

ESET Forum

YouTube videos

Support News Customer Advisories ESET Status Portal Contact ESET Technical Support

Existing customer?

Chat with ESET AI Advisor for support