Last week with Easter approaching there were fewer announcements than usual. With Europol helping to shut down the Genesis Market.
Product announcements came from LastPass, LogRhythm, and Noname Security. There were appointments by Sophos and Watchguard. Two companies, Sonatype and Veeam looked to strengthen their channel programs. Also Neustar Security Services rebranded to Vercara.
Europol
The Genesis Market, one of the largest criminal facilitators of selling stolen account credentials to hackers worldwide, has been shut down. An operation led by the US Federal Bureau of Investigation (FBI) and the Dutch National Police (Politie), coordinated with Europol, conducted an operation in 17 countries that resulted in 119 arrests, 208 property searches and 97 knock-and-talk measures.
Head of Europol’s European Cybercrime Centre, Edvardas Šileris, said, “Through the combined efforts of all the law enforcement authorities involved, we have severely disrupted the criminal cyber ecosystem by removing one of its key enablers. With victims located across the globe, the strong relationships with our international partners were critical in the success of this case.”
LastPass
LastPass announced the expanded availability of its Security Dashboard and associated dark web monitoring and alerting. It claims it is the only password manager providing proactive credential monitoring for all customers, including those using the product for free.
The Security Dashboard is the central hub where customers can monitor the overall security of all vault credentials, including exposure to the dark web, which allows customers to better protect themselves from potential breaches.
Christina Cho, Sr. Director of Product Management at LastPass commented, “The Security Dashboard is an essential component of the partnership we have with our customers to help keep their data and private information secure. We are committed to providing our customers with the knowledge and best practices necessary to make their password vault and digital presence as strong as possible.”
The security dashboard offers the following benefits:
- Security Score: A percentile score based on best practices and includes factors such as the strength of vault passwords, use of multi-factor authentication, and dark web monitoring.
- A List of At-Risk Passwords: it enables users to update passwords with the LastPass generator to create strong and unique passwords.
- Enabling Multi-Factor Authentication: LastPass recommends customers enable multi-factor authentication to add an extra layer of protection to their LastPass vault.
- Dark Web Monitoring: Customers can enable dark web monitoring and receive real-time monitoring of email addresses saved to their vault against a database of compromised credentials from third-party breaches. Customers receive alerts if passwords are compromised. The system can be set up via the mobile app and also checks the historical breaches for the last twelve months when activated.
LogRhythm
LogRhythm continues to innovate, releasing updates and new features across its portfolio. Updates include:
LogRhythm SIEM
- A new log source page added to the web console increases log visibility and streamlines administrative workflows
- Improved Open Collector onboarding reduces administrative overhead managing log collection with improved workflows
- Enhancements to manage log sources in the API allow users to fully manage Log Source Virtualization with new administrative functions
- New out-of-the-box use cases correlate outputs from UEBA machine learning models with other observations in the SIEM
LogRhythm Axon
- Grouping of related streaming analytics detections to quickly identify related activity and gain a complete picture of an incident
- Axon Linux Agent for flat files and Syslog provides greater visibility into Linux environments
- Suggested search prompts add context and facilitate fast decision making
LogRhythm NDR
- New and improved UI experience enhances the analyst experience and enables quicker threat resolution
- In-product training and computer-based training help security teams easily adopt and realize the full value of the NDR platform
It has also announced a new Unlimited Upgrades Service from its Professional Services team, which assists customers in upgrading to every quarterly SIEM release with ease.
Chris O’Malley, CEO of LogRhythm, commented, “LogRhythm is proud to be celebrating our fourth consecutive innovation launch, furthering our commitment to keeping our innovation promises to customers every 90 days.
“Our vision and mission are led by a team of passionate, courageous, and perseverant leaders devoted to consistently enhancing customer satisfaction, employee engagement, and operational efficiency. We are built on two decades of solving customers’ challenges through our unparalleled services and industry-best solutions, and we’re just getting warmed up.”
Neustar Security Services/Vercara
Neustar Security Services has rebranded itself as Vercara. Colin Doherty, CEO, Vercara, commented, “Rebranding to Vercara is a significant milestone in our transformation, fueled by investments in what matters most to our customers: new and enhanced products and services, increased network capacity and performance, and expanded geographic coverage.
“We continuously strive to provide a compelling, engaging customer experience, and this latest step in our journey further bolsters our commitment to delivering best-in-class cloud security products and unrivaled 24/7 customer support.”
The new name is a fusion of “verit” and “cara,” Latin for truth and beloved, respectively. A sharp, distinctive “V” icon, created by combining dynamic angled planes, forms the new logo. When combined with the product brand of “Ultra,” which means to go beyond or transcend, the result is an embodiment of relentless dedication to protecting customers’ most important assets with a highly respected and trusted suite of cloud-delivered security services.
Noname Security
Noname Security announced the Noname Public Sector’s Hardened Virtual Appliance. It makes the API security platform available to the U.S. Federal Government, highly regulated industry customers, and FedRAMP-authorized vendors. The appliance is the first of its kind in the comprehensive API security space and is designed to deliver a drop-in, secure, and scalable system for discovering, monitoring, and protecting mission-critical APIs and data.
The Noname Security Hardened Virtual Appliance enables access to a powerful, complete, and easy-to-use API security platform that helps:
- Discover all APIs, data, and metadata
- Analyze API behavior and detect all API threats
- Prevent attacks and remediate API vulnerabilities
Dean Phillips, Executive Director of Public Sector Programs at Noname Security, commented, “Governments and highly regulated industries have unique security needs. Having worked closely with many Federal agencies during my career, I know how impactful it will be to provide this level of security and insight into APIs and provide options that make it easy to meet government standards.
“The government and regulated industries are not immune from cyber criminals, they are targeted as much – if not more – than most organizations. We’re excited to arm them with the tools they need to protect their assets.”
Noname Security has also entered into a strategic partnership with MindPoint Group, a cybersecurity consulting firm that works with federal agencies and enterprises worldwide. Noname Security has worked with MindPoint Group to create a comprehensive API security platform in a fully-hardened OVA deployment format. Customers benefit from an accelerated path to securing their API inventory via this simplified deployment model while ensuring the platform is secured out of the box.
Matt Shepherd, Vice President and Cofounder of MindPoint Group, commented, “Our partnership with Noname Security represents our shared mission to improve security through innovation and to provide the best possible security solutions and services for our customers. We’re thrilled to solidify this partnership and look forward to collaborating on more projects with this talented team.”
Doug Steele, Regional Vice President of Federal at Noname Security, said, “With Mindpoint Group’s guidance, we have created a means for agencies to protect data-driven missions. APIs are the language of data and protecting them is mission critical.”
Orange Cyberdefense
Orange Cyberdefense aims to attract and recruit around 800 professionals in nine European countries during 2023 aiming to grow the firm to 3,800 staff by the end of the year. The roles range from analyst roles in operational teams to architects, engineers, consultants, to ethical hackers. Positions are available in Belgium, Denmark, France, Germany, the Netherlands, Norway, Sweden, Switzerland and the United Kingdom.
Hugues Foulon, CEO of Orange Cyberdefense commented, “Our goal is to create the largest community of cyber experts in Europe. This is a huge challenge, especially with the talent shortage the whole industry is experiencing. We promise the professionals who choose to join us that they will be joining a very ambitious organization that has the resources to be the leader in its market and to offer extensive development opportunities to its employees.
“Our employees are united by a common mission to build a safer digital society. We have entered an ultra-digital world with many clear benefits – let’s not deny ourselves this – but we must not forget the real dangers it also poses”
Sonatype
Sonatype has launched its Partner Acceleration Program. The program offers structured tiers of benefits that support increased time to value and customer growth. As partners grow their business with Sonatype, they have access to increasing program benefits and exclusive resources, including dedicated partner managers, co-branded marketing materials, technical support, event opportunities, and more. It supports three types of partners: Sonatype Solution Providers, Global System Integrators and Technology Integration Alliances.
Bruce Gordon, Senior Vice President of Global Channel Sales & Alliances at Sonatype, commented, “This is an incredible time of growth for our Sonatype partner ecosystem. The demand for software supply chain management solutions continues to skyrocket as organizations increasingly recognize the need to understand the open source their applications depend on,” said “We have an outstanding community of partners from across the globe providing industry-leading services and technologies. We’re excited to now provide this partner community with additional benefits designed to increase the value and delivery speed of safe and secure open-source software.”
Sophos
Sophos has promoted Joe Levy to president of the Sophos Technology Group (STG). The company also appointed Bill Robbins president, Worldwide Field Operations. Robbins joins from Robbins was at Mandiant, Inc., where he was Chief Revenue Officer and Executive Vice President.
Sophos published a new survey report, “The State of Cybersecurity 2023: The Business Impact of Adversaries on Defenders.” The report found that globally,
- 93% of organizations find the execution of some essential security operation tasks, such as threat hunting, challenging
- 71% of those surveyed also reported challenges with timely remediation
- 71% said they have challenges understanding which signals/alerts to investigate
- 71% reported challenges prioritizing investigations
John Shier, field CTO, commercial, Sophos, commented, “Only one fifth of respondents considered vulnerabilities and remote services a top cybersecurity risk for 2023, yet the ground truth is that these are routinely exploited by Active Adversaries. This cascade of operational issues means that these organizations aren’t seeing the full picture and are potentially acting on incorrect information. There’s nothing worse than being confidently wrong. Having external audits and monitoring helps eliminate blind spots. We can look at you the way an attacker does.
“Today’s threats require a timely and coordinated response. Unfortunately, too many organizations are stuck in reactive mode. Not only is this having an impact on core business priorities, but it also has a sizeable human toll, with over half of respondents stating that cyberattacks are keeping them up at night. Eliminating the guesswork and applying defensive controls based on actionable intelligence will let IT teams focus on enabling the business instead of trying to douse the eternal flame of active attacks.”
Veeam
Veeam launched the Veeam Competency Program for Veeam Value-Added Resellers (VVARs) and Veeam Cloud & Service Provider (VCSP) partners. The new program provides dedicated expertise and resources to support customers and fellow partners using the recently launched Veeam Data Platform, a single platform delivering more advanced data security, recovery and hybrid cloud capabilities with Veeam Backup & Replication (VBR) v12 as the foundation.
VVAR competency categories include:
- Ransomware and Disaster Recovery Competencies
- Public Cloud Protection Competency
- Microsoft 365 Protection Competency
- Container Protection Competency
Two new VCSP Customer Ready competencies are added
- Off-site Backup
- Disaster Recovery as a Service
- Backup as a Service (BaaS) for Microsoft 365
- Managed Service Provider (MSP) Backup (Reseller Ready only)
- NEW: Backup as a Service (BaaS) for Amazon Web Services (AWS)
- NEW: Backup as a Service (BaaS) for Microsoft Azure
Larissa Crandall, Vice President of Global Channel and Alliances at Veeam, said, “Our success is built upon working closely with our partners to provide customers with the best protection and recovery for their data. We bring unsurpassed innovation and combine that with the expertise of our partners to offer customers a perfectly matched solution for their needs.
“As a 100% channel-driven organization, Veeam is committed to ensuring our partners have access to the most valuable resources and training to deliver first-rate outcomes for customers. That’s why these new program enhancements have been designed in collaboration with our partners to expand their capabilities in a way that enables them to tap into the potential of the total addressable market.”
WatchGuard
WatchGuard has appointed HoJin Kim as the company’s new senior vice president and chief revenue officer. HoJin will lead WatchGuard’s worldwide sales organization and be responsible for driving revenue growth, scaling and expanding the global sales organization, and driving the adoption of WatchGuard’s Unified Security Platform framework within the MSP community.
