Security news covered last week included the appointment of a new US-based CEO for Cloudsmith. Other news came from Check Point Software Technologies, Dragos, Ground Labs, Integrity360, LiveAction, Logpoint, ManageEngine, Secureworks, Sophos, Tenable and Trustwave.
Check Point Software Technologies
Check Point announced that it will acquire Atmosec as an innovative SaaS security vendor. Its technology will allow organizations to prevent cyberattacks on their SaaS ecosystem: discover and disconnect malicious applications, prevent communication with risky 3rd party applications and fix SaaS misconfigurations.
Nataly Kremer, Chief Product Officer and Head of R&D at Check Point Software Technologies said, “The shift to SaaS applications introduces specific challenges, notably in the realm of malicious SaaS-to-SaaS communications. Atmosec´s capabilities in SaaS discovery, risk assessment, and full visibility are instrumental in addressing these challenges.
“Integrating Atmosec’s technology into Check Point Infinity sets us to deliver one of the industry’s most secure SASE solutions, enabling organizations to effectively manage SaaS security, prevent data leaks, unauthorized access, and malware dissemination, and ensure a robust, adaptive zero-trust environment.”
Dragos
Dragos has released Dragos Knowledge Pack Plus 5.0. This release adds added coverage for vulnerabilities. Based on 12 new advisories associated with vendors, including WAGO, Mitsubishi Electric, Rockwell Automation, Moxa, and Hitachi Energy. There is further updates coverage for vulnerabilities based on 175 advisories, impacting 80+ assets. Over 300 characterizations and 620 detections are included in KP Plus 5.0 for customers running Dragos Platform 2.2.x.
Key highlights include:
- Asset Identification by LLDP String
- CIP Hardware Analysis
- Siemens S7Comm Plus Characterizations
- DeltaV DOP Characterization Enhancements
- 11 new or updated detections
Ground Labs
Ground Labs announced the release of GLASS Studio. GLASS Studio simplifies creating and deploying custom data patterns for Enterprise Recon, Ground Labs’ flagship data discovery and management solution.
Using its guided visual builder and no-code interface, GLASS Studio empowers customers and partners to take advantage of Enterprise Recon’s proprietary GLASS Technology. GLASS Technology enables the rapid, accurate discovery of custom and non-standard data types across on-premise and cloud-based environments and services.
Requiring no coding knowledge, GLASS Studio users can tailor their data patterns from scratch or modify them from a library of pattern templates. These can be refined with various context rules, checksum validations, boundary rules, and exclude/require rules. With its instant test feature, GLASS Studio ensures accurate and error-free customization.
Don Kaye, COO and CCO of Ground Labs, said, “The release of GLASS Studio marks a new stage for Ground Labs. We are giving customers control of how they search for their own data, allowing them to tailor their data discovery efforts to their own increasingly complex needs. As data protection and privacy regulation mounts around the world, organizations need to be able to discover and protect the growing stores of data quickly, accurately and efficiently.”
Integrity360
Integrity360, the leading cyber security specialist in Ireland and the UK, announced that it has invested €8 million in its new Security Operations Centre (SOC) in Dublin. It will hire 200 people over the next three years, 50 at a newly opened SOC based in a high-tech, fully secure Termini building in Sandyford. This will bring its total workforce worldwide to about 700.
Ian Brown, Chief Executive and Chairman of Integrity360 said, “Drawing on the expertise of our 300-plus cyber security team and leveraging the latest advancements in incident response, we stay ahead of emerging cyber threats and protect organisations against modern security challenges. For some customers, through our Managed Detection and Response service and SOCs, we provide 24/7 monitoring and management of their IT networks.
“This latest investment in our presence in Ireland and our SOC network is another significant step in our growth plans as we look to expand our team, enhance our offering and excel for customers in terms of incident detection and response. It will also allow us to further strengthen our position across Europe and the UK as a leading cyber security specialist.”
Minister for Enterprise, Trade and Employment, Simon Coveney attended the opening of the new SOC and commented, “Integrity360 is an Irish indigenous company that has grown and developed to compete on a global scale, and the announcement today of 200 new jobs globally with 50 based here in Dublin shows that Ireland is to the forefront of development and innovation in the cyber security space.”
LiveAction
LiveAction announced that users can now leverage LiveWire in concert with Artificial Intelligence (AI) to better refine network operations. LiveWire will allow users to easily export their network packet data for use in AIs, such as ChatGPT, to find patterns that human operators might otherwise miss.
This can make addressing previously complex network issues into natural language questions. For example, when voice jitter becomes a problem, administrators can use their network monitoring data in an AI to merely ask questions like “Do we have any voice problems?”, “Where?”, “For how long?” and “How do I address it?”
These capabilities can also be used to unearth previously unnoticed patterns in text-heavy data, uncover contextual relationships in network events that would be difficult for a human administrator and simplify previously complex workflows.
John Smith, Chief Technology Office and Founder, LiveAction, notes, “AIs and Large Language Models (LLM) are having rapid and transformative effects on the world around us. However, many still aren’t aware of how they can leverage them with the data they already own. LiveWire gives users an easy way to supercharge their network monitoring data with these emerging technologies.”
Logpoint
Logpoint has appointed Michael Haldbo as Chief Financial Officer (CFO). He will report to Logpoint CEO Jesper Zerlang. Haldbo will be responsible for taking the company successfully through the next step of the Logpoint journey to become a European cybersecurity powerhouse.
Zerlang commented, “We’re excited that Michael is joining the Logpoint team as we grow beyond scaleup and into an established cybersecurity company. Michael has extensive experience in taking leadership over transformation projects and M&A.
“With our recent acquisition by Summa Equity, we have proven that Logpoint has the capabilities and critical mass to take us to the next level, and as we mature the business model, he is an evident choice to support and protect the business financially.”
Haldbo commented, “Logpoint has such a strong value proposition with world-class cybersecurity solutions, competitive pricing models, and the agility and flexibility that enable us to challenge the big mastodonts in the SIEM market and become the number one vendor in Europe with a global range.
“From my perspective, Logpoint ticks all the boxes: Scaleup, growth-market, a strong business model, transitioning into SaaS, and private equity owned. The frosting on the cake is that Logpoint solutions address a major societal challenge, namely the ever-growing cyber threat in the wake of COVID-19 and the war in Ukraine.”
ManageEngine
ManageEngine released the findings of its Cybersecurity and PII Report, an exploration of the cyber readiness of organisations across Australia and New Zealand (A/NZ). The survey found that where data breaches occurred, PII was involved in 51% of the instances. However, 54% report there were no subsequent changes in PII management.
With regards to data stored:
- 55% of respondents store data on past customers
- 41% of respondents store data on past employees
- 70% of respondents store data on current customers
- 66% of respondents store data on current employees
- 37% of respondents store data on potential customers
Vinayak Sreedhar, ManageEngine’s Country Manager for Australia, said the findings highlight alarming gaps in Australia’s cybersecurity preparedness. “One year ago, a string of high-profile breaches saw millions of Australians have their data compromised, with identification points traded on the dark web.
“This prompted discussions around the legal right to request the erasure of personal information in company databases. The law is yet to change in Australia and, as this survey indicates, local organisations have not changed their practices.”
The report also looked at cyber resilience. Rajesh Ganesan, President of ManageEngine, commented, “It’s imperative that businesses adopt the data protection standards specific to their region, stay compliant, and bolster their cyber resilience to protect not only their own operations, but the sensitive information of staff and customers, both past and present. We hope this report drives home the urgency of these requirements.”
Secureworks
Secureworks announced the expansion of its Partner First Strategy across the UK&I and Europe. All new Secureworks Taegis business across the region will be sold in collaboration with strategic solution providers and MSSPs. The announcement underscores Secureworks commitment to working with the partner community to bolster end-user organisations’ cyber readiness as they invest to prevent, defend and recover from cyberattacks.
Simon Godfrey, Regional Director, Secureworks, said, “Across Europe, we see organisations of all sizes and industries facing cybersecurity challenges on multiple fronts. They are striving to understand their risk and how to mitigate it. Taegis can enable them to move swiftly and safely as they continue to deliver goods and services to their customers.
“Taegis eliminates the silos associated with point solutions and creates one consolidated view that offers customers the best defence against a shifting threat landscape.”
Sophos
Sophos announced the Sophos AP6 Series to support the shift to hybrid environments with a new generation of remotely managed Wi-Fi 6 access points. The new offering adds another component to Sophos’ secure access portfolio, which includes Sophos Firewall and Sophos Switch.
Daniel Cole, Vice President of product management at Sophos, said, “With cloud-managed Wi-Fi, Sophos is addressing the need for more scalable, remote-managed Wi-Fi solutions that support the increasing number of connected devices and the proliferation of IoT systems.
“This combination of our Sophos AP6 Series and Sophos Switches provides channel partners with a consolidated single-vendor access solution strategy, easing the burden and overhead cost of managing multiple disparate systems from different vendors.
“Many access layer networks are still operating at 1 Gigabit speeds. With the significant performance enhancements in Wi-Fi 6, the industry has a great opportunity to review and modernize the wireless network ecosystem into which wireless is deployed. Sophos’ solution dissolves a common bottleneck at the physical layer and can boost the total network performance of a company’s Wi-Fi infrastructure.”
Tenable
Tenable, the Exposure Management company, has signed a definitive agreement to acquire Ermetic. Ermetic provides a fully integrated cloud-native application protection platform (CNAPP) company and a leading cloud infrastructure entitlement management (CIEM) provider.
Amit Yoran, Tenable’s Chairman and Chief Executive Officer, commented, “We will have an opportunity to put additional market-leading cloud security capabilities into the hands of tens of thousands of customers. Together, we will be able to deliver a holistic view of the modern attack surface and help organizations reduce exposure and risk, using identity as an essential foundation.”
Shai Morag, CEO and Co-founder of Ermetic said, “The combination of Tenable’s rich exposure management data and Ermetic’s cloud solutions will provide unprecedented levels of actionable visibility and value. It will remove the complexity that makes managing cloud environments so challenging.
“Tenable’s massive install base of customers will enable us to introduce more organizations to the benefits of context-aware risk prioritization to solve problems before they manifest.”
Trustwave
Trustwave has published “2023 Hospitality Sector Threat Landscape: Trustwave Threat Intelligence Briefing and Mitigation Strategies” (registration required). The report explores the threats and risks hospitality organizations face and practical insights and mitigations to strengthen their defences.
Trustwave SpiderLabs has documented the attack flow utilized by threat groups, exposing their tactics, techniques, and procedures. These persistent threats pose significant risks to the hospitality industry, from brute forcing to exploiting known vulnerabilities to attacking exposed open ports.
Kory Daniels, Trustwave’s Chief Information Security Officer, commented, “With unique considerations, such as the adoption of contactless technology and the steady turnover of customers and employees, the hospitality industry faces a complex security landscape with distinct challenges.
“In an industry where guest satisfaction and reputation are paramount, staying secure while offering cutting-edge technology is a delicate balancing act. Our latest threat briefing is a valuable resource for security leaders within the hospitality sector, providing a comprehensive view of the threats observed by our SpiderLabs team and specific mitigation strategies to bolster defences.”
The report looks at technology and cybersecurity trends in the hospitality industry and highlights the more common threat actors and tactics in hospitality.
The combination of Tenable’s rich exposure management data and Ermetic’s cloud solutions will provide unprecedented levels of actionable visibility and value.
