Each business day MSSP Alert delivers a quick lineup of news, analysis, and chatter from across the MSSP, MSP and cybersecurity world.
Reaching Our Inbox:
Send news, tips and rumors to Managing Editor Jim Masters: [email protected]
Today’s MSSP Alert Market News:
1. ASPM Marketplace Debuts: Cycode, a specialist in application security posture management (ASPM), has launched a "first of its kind" ASPM marketplace, featuring more than 100 connectors and integrations. Cycode now enables customers to seamlessly integrate and ingest findings from relevant third party security tools, complement and contextualize those findings with native scanners and eliminate gaps within supply chain security, the company said.
2. Cyber War Threat Activity Report: ESET has released its latest APT Activity Report, which summarizes notable activities of selected advanced persistent threat (APT) groups documented by ESET researchers from October 2023 until the end of March 2024. After the Hamas-led attack on Israel in October 2023, and throughout the ongoing war in Gaza, ESET has detected a significant increase in activity from Iran-aligned threat groups. Russia-aligned groups have focused their activities on espionage within the European Union and attacks against Ukraine. On the other hand, several China-aligned threat actors exploited vulnerabilities in public-facing appliances, such as VPNs, firewalls and software. North Korea-aligned groups continued to target aerospace and defense companies and the cryptocurrency industry, ESET said.
3. Public Sector Threat Intelligence Research: Trustwave, a cybersecurity and managed security services provider, has released a new report, "2024 Public Sector Threat Landscape: Trustwave Threat Intelligence Briefing and Mitigation Strategies." Phishing is a leading threat in the public sector, responsible for a staggering 80% of initial access gained by attackers, and LockBit 3.0 carried out 43% of ransomware attacks in the public sector, with Medusa and Play accounting for 13% and 12%, respectively. Local governments are the most vulnerable public sector entities to ransomware attacks, accounting for 60% of incidents, Trustwave reports.
4. Device Security Partnership: Forescout Technologies and Microsoft have formed a strategic partnership to help customers protect every enterprise asset, both managed and unmanaged. This collaboration addresses a growing need for comprehensive security across all connected devices, the company said. As part of the agreement, Forescout will offer its security solutions via Microsoft Azure to all commercial and government customers.
5. Identity Security Company Opens Customer Success Center: SailPoint Technologies, a specialist in unified identity security, has launched a digital Customer Success Center aimed at further enabling customers at all stages of their identity security journey. The Customer Success Center lives within the SailPoint Compass Community, which has more than 100,000 members. It provides SailPoint partners and customers with strategic program resources, personalized onboarding, success planning sessions and curated content focused on identity security, the company said.
6. Ransomware Report Issued: At-Bay, an InsurSec provider, has released its 2024 InsurSec Report, which details new trends in ransomware attacks against mid-market and emerging businesses. The research shows that ransomware didn’t just grow in the U.S. in 2023, it evolved, with the frequency of ransomware claims jumping 64% year-over-year. This was primarily driven by an explosion in “indirect” ransomware incidents, which increased by more than 415% in 2023 than in 2022. Standing out among the biggest loss drivers were remote access tools, which accounted for 58% of ransomware attacks. Double leverage attacks (those using both data encryption and exfiltration) also grew by 51% in 2023, demonstrating that threat actors shifted their tactics to pressure more victims into paying ransoms, At-Bay said.
7. AI Security Solution Debuts: OOKOS, a specialist in AI cybersecurity for the defense and intelligence sectors, has launched a crowdfunding campaign for its cybersecurity solution, DYFEND. Designed to combat the rising tide of AI-driven cybercrime, DYFEND offers continuous user authentication through a zero trust approach, delivering protection against the latest cyber threats, the company said.
8. Free Security Course Offered: AttackIQ, an independent vendor of breach and attack simulation (BAS) solutions and founding research partner of the MITRE Engenuity Center for Threat-Informed Defense (CTID), has launched a new AttackIQ Academy course, “Foundations of AI Security.” The free course addresses the urgent need to secure AI systems as they become increasingly intertwined with daily life.
