NIBS (credit image/Pixabay/ Ryan McGuire)Security news from last week included several product announcements. These came from Checkpoint Software, Neustar Security Services, NTT and Qualys. Qualys also revealed that it had achieved a FedRAMP readiness high status. Meanwhile, Menlo Security achieved a moderate level status of its security platform.

Fortra announced product updates to seven of its solutions. Dragos, Matrix42m and Mimecast announced senior appointments. Finally, ManageEngine and Sophos published reports on cybersecurity.

CheckPoint Software

Check Point Software Technologies introduced a new risk management engine and enhanced capabilities to the Check Point CloudGuard Cloud Native Application Protection Platform (CNAPP). The new capabilities add intelligent risk prioritization, agentless scanning, entitlement management and pipeline security.

Check Point CloudGuard now provides smart risk prioritization. It allows teams to quickly eliminate critical vulnerabilities, such as misconfigurations and over-privileged access, based on severity throughout the software development lifecycle. The solution includes:

  • Effective Risk Management
  • Cloud Identity & Entitlement Management
  • Agentless Workload Posture
  • Pipeline Security

TJ Gonen, VP of Cloud Security at Check Point Software, said, “Cloud adoption continues to accelerate, and the ability to streamline cloud security has become vital. By adding Effective Risk Management and amplifying Check Point CloudGuard’s CNAPP offering, we are making it possible for organizations to shift CNAPP left and take a prevention-first approach to their cloud security that’s easy to manage.

“With our contextual AI and risk scoring engine, security teams no longer have to manually figure out which alerts to remediate first—the machine will do it for them. By removing this burden, customers can focus on migrating their critical workloads to the cloud with confidence.”

Dragos

Dragos has appointed Kurt Gaudette as Vice President of Global Threat Intelligence. This is Gaudette’s first role outside of the Military after a distinguished career in the USAF and a career at the Department of Defense in several senior roles.

Gaudette served as part of the US Department of Defense’s Senior Executive Service (SES), leading large enterprise-level organizations focused on collecting and analysing foreign intelligence ranging from space and weapons to industrial control systems and emerging disruptive technologies. He has led globally distributed teams and organizations of up to 4,000 personnel and executed budgets of over $1B.

Robert M. Lee, Chief Executive Officer and Co-Founder of Dragos, Inc, commented, “Kurt is a renowned threat intelligence and access expert with unrivaled experience building and leading global enterprise teams. Kurt is first and foremost a leader with vision and initiative. Couple that with his keen understanding of the threat landscape worldwide, and you have an executive who will help drive innovative ways to stay ahead of sophisticated and quickly evolving industrial cybersecurity threats.” 

Fortra

Fortra unveiled the first set of product updates for 2023. It highlights several improvements, including:

  • Alert Logic includes updates to streamline work within the console and vulnerability scan configuration
  • Core Impact includes ransomware simulation and exploit execution tools to conduct a more targeted risk assessment
  • GoAnywhere supports secure file transfer over Java 8 as well as improved notification capabilities
  • Terranova Security introduced its ContentHub. It offers administrators an easy way to view, select, and implement engaging security awareness content into their training programs
  • Titus introduces a new data classification reporting server
  • Tripwire has strengthened its user interface. It has reduced the installation process to a matter of seconds, and improved data export and integration
  • FileCatalyst features an improved interface, OAuth support, and numerous security enhancements.

John Grancarich, Executive Vice President, Strategy at Fortra, commented, “Fortra’s quarterly Release Days help security and IT professionals plan ahead, take advantage of new functionality, and deploy the latest version of the solutions they use every day. We work closely with our customers to ensure their feedback is incorporated into our product roadmap.“

ManageEngine

ManageEngine announced a new study, Cloud Security Outlook 2023. The study found that enterprises have a limited number of analysts running their security operations centres (SOCs). They are also deploying multiple tools to address their cloud security challenges.

Key findings included:

  • Cloud adoption is increasing, with 72% of respondents using multi-cloud applications
  • 23% plan to move the cloud in the next 24 months
  • SOCs are short-staffed, though, with 77% only having 3-5 security analysts working in their SOCs
  • 48% of respondents find compliance with cybersecurity laws, especially those related to the cloud, highly challenging.
  • 97% of respondents will evaluate a solution that provides all security functions in a single console in 2023

The survey found that:

  • A lack of staffing and orchestration makes the security process complicated.
  • The three most common and impactful cloud security threats are identity-based.
  • Compliance proves to be challenging for enterprises.

Manikandan Thangaraj, vice president of ManageEngine, said, “The adoption of CASBs and SIEM platforms helps enterprises ensure security and integrity. However, having different tool sets lead to a visibility gap and complicates cloud security management amid unpredictable threats.

“Cyber resilience refers to the ability of an organization to ensure business continuity in the event of a cyberattack with the help of business processes and tools. Cloud security resilience, therefore, requires enterprises to have visibility, enhanced policy enforcement, infection isolation and impact neutralization from a unified security architecture.”

Matrix42

Matrix42, a leading provider of Enterprise Service Management (ESM) SaaS solutions, announced the appointment of Thomas Fetten as the new CEO and Marc Breitfeld as the new CFO.

Menlo Security

The Menlo Security Cloud Security Platform powered by a patented Isolation Core™ has received Authorization to Operate (ATO) at the moderate level under the Federal Risk and Authorization Management Program (FedRAMP).

Mimecast

Mimecast announced the appointment of David Helfer as Chief Revenue Officer (CRO), effective immediately.

Neustar Security Services

Neustar Security Services launched UltraDDR (DNS Detection and Response). It is a recursive DNS-based protection service aimed at combatting network breaches, ransomware and phishing, and supply chain compromise attacks while enforcing enterprise-acceptable use policies for its users.

UltraDDR provides a Protective DNS solution that enables enterprises to get in front of threats by blocking communication before damage can occur. Protective DNS analyzes DNS queries and takes action to mitigate threats.

Carlos Morales, senior vice president of solutions at Neustar Security Services, commented, “C-suites live in fear of becoming victimized by ransomware or a widespread data breach as the frequency of attacks is higher than ever while attackers are routinely exploiting business’ weakest security link – their people.

“You may not be able to prevent one of your users from clicking on or opening something nefarious, but you can use protective DNS as a means of preventing outbound connections from infected hosts, nullifying the threat before it gets started. UltraDDR’s real-time detection and response capabilities can help prevent user actions from becoming an enterprise’s biggest security blind spot.”

NTT

NTT Ltd announced the addition of Palo Alto Networks Prisma SASE to its Managed Campus Networks portfolio. The new offering is a comprehensive managed Secure Access Service Edge (SASE) solution that includes SD-WAN, cloud-delivered security, and enhanced automation and reporting. The end-to-end solution is designed to help enterprises meet current digital transformation challenges and enable more flexible working methods.

Sunil Kishore, Senior EVP Managed Network and Collaboration Services Division at NTT Ltd, commented, “We are excited to partner with Palo Alto Networks to provide this end-to-end managed SASE offering that helps customers address the challenges that confront today’s enterprise operational environment. The breadth of our combined technical resources and service capabilities, coupled with NTT’s global presence, will enable us to design, deliver and manage solutions for even the most complex enterprise requirements.”

Anand Oswal, Senior Vice President of Products, Network Security at Palo Alto Networks, noted, “NTT’s world-class service, support, and comprehensive set of SLAs provide a strong managed service foundation for our single vendor SASE solution. NTT Managed Campus Networks with Palo Alto Networks Prisma SASE will play an integral role in enabling organizations to secure their digital transformation journeys through enhanced operational efficiency, agility and effective management of cloud environments, providing a true zero-trust solution to safeguard today’s distributed workforce.”

Qualys

Qualys announced its new GovCloud platform. It is certified as FedRAMP Ready status high level. It is the only vulnerability and patch management platform to have achieved this. Qualys provides the foundation for any Government organisation. The integrated platform includes all the critical security and compliance solutions needed to address Executive Orders and aligns with NIST 800-53 v5 standards eliminating the need to stitch together siloed solutions.

The platform includes:

  • Configuration and Policy Compliance
  • Container Security
  • Cybersecurity Asset Management with External Attack Surface Management
  • File Integrity Monitoring
  • Vulnerability Management Detection and Response (VMDR)

Sumedh Thakar, president and CEO of Qualys, commented, “We are delighted that our newest offering for the federal market, GovCloud, has received FedRAMP High Ready status, the highest level of security standard offered by the federal program

“As the only vulnerability management platform currently with FedRAMP Ready status at the High impact level, we are dedicated to providing federal agencies with a modern alternative to legacy scanners to improve their security posture as they embrace digital transformation.”

SolCyber

SolCyber has appointed Simon Naldoza as the new Head of Business Development. Simon brings over 20 years of cybersecurity and partnership/business development experience to the team.

Sophos

Sophos released new findings on CryptoRom scams in its latest report, “Fraudulent Trading Apps Sneak into Apple and Google App Stores.. CyptoRam scams are elaborate financial fraud schemes that prey on and trick dating app users into making fake cryptocurrency investments

Jagadeesh Chandraiah, a senior threat researcher at Sophos, explains, “In general, it’s hard to get malware past the security review process in the Apple App Store. That’s why, when we originally began investigating CryptoRom scams targeting iOS users, the scammers would have to persuade users to first install a configuration profile before they could install the fake trading app. This obviously involves an additional level of social engineering—a level that’s hard to surmount.

“Many potential victims would be ‘alerted’ that something wasn’t right when they couldn’t directly download a supposedly legitimate app. By getting an application onto the App Store, the scammers have vastly increased their potential victim pool, particularly since most users inherently trust Apple.

“Both apps are also not affected by iOS’ new Lockdown mode, which prevents scammers from loading mobile profiles helpful for social engineering. In fact, these CryptoRom scammers may be shifting their tactics—i.e., focusing on bypassing the App Store review process—in light of the security features in Lockdown.”

Security news from the week beginning 16th January 2023

 

LEAVE A REPLY

Please enter your comment!
Please enter your name here