Each business day MSSP Alert delivers a quick lineup of news, analysis and chatter from across the MSSP, MSP and cybersecurity world.
Reaching Our Inbox:
Send news, tips and rumors to Managing Editor Jim Masters: [email protected]
Today’s MSSP Alert Market News:
1. Driving Revenues for MSSPs: Radware, a leading provider of cybersecurity and application delivery solutions, has unveiled a new flexible business model for managed security service providers (MSSPs). The offering identifies new revenue streams to help MSSPs grow their businesses by extending a line of managed network and application security services to their customers. Radware’s enables MSSPs to customize, rebrand and resell its Cloud DDoS Protection and Cloud Application Protection Services. The services are built to defend MSSPs’ customers against advanced cyber threats, including DDoS, DNS, application and layer 7 Web DDoS attacks, the company said.
2. MSSP Adds XDR: Stellar Cyber, an Open XDR specialist, announced that RSM US, a provider of professional services to the middle market, is using the Stellar Cyber Open XDR platform to unify, expand and control the cybersecurity defenses across its global MSSP client network. RSM US operates a global managed security operations service, RSM Defense, which offers around-the-clock threat detection, response and intelligence services to its clients.
3. OT Security Partnership: GE Vernova and Dragos have announced a technology partnership to offer cybersecurity solutions by combining their respective expertise in grid automation and operational technology (OT) cybersecurity. Through this partnership, GE Vernova’s Grid Solutions business will provide its global grid automation customers with Dragos’ cybersecurity solutions, aiming to provide a holistic approach to safeguarding their critical infrastructure and other OT environments.
4. Cyber Risk Analysis Offer: CyberSaint, a cyber risk management provider, has launched its free cyber risk analysis offering, providing a user’s top industry risks and related controls in just three clicks, powered by patented AI and the largest cyber loss dataset in the world, the company said. In addition, users can instantly uncover their top cyber risks based on unique industry, company size and revenue. They will also learn what controls map to those risks to inform their cyber risk management strategy.
5. Cyber Deal Closes: Atena Equity Partners has acquired a majority stake in the Redshift Group, a specialist in cybersecurity and information technology. The acquisition of a 51% stake was completed in partnership with cybersecurity professional Simon Church. This is technology M&A deal number 49 that MSSP Alert and sister site ChannelE2E have covered so far in 2023. See more than 2,000 technology M&A deals for 2023, 2022, 2021, and 2020 listed here.
6. Threat Alert: Guardio researchers report that it has uncovered a security threat compromising more than 8,000 domains from brands and institutions, including MSN, VMware, McAfee, The Economist, Cornell University, CBS, Marvel, eBay, and others. This malicious activity, dubbed "SubdoMailing," uses the trust associated with these domains to circulate spammy and malicious phishing emails by the millions each day, using their credibility and stolen resources to slip past security measures, Guardio said.
7. Phishing Detection Advancement: NetSTAR has announced an advancement in phish detection technology with the introduction of PhishCompass. This AI-supported solution is tailored for a wide range of industry sectors, including security, networking, cloud services, service providers and mobile operations. PhishCompass integrates three advanced AI detectors to scrutinize domain strings, HTML content and visual elements, assessing the phishing threat potential of websites, NetSTAR said.
8. CISA Issues Advisory: The Cybersecurity & Infrastructure Security Agency (CISA), in partnership with UK National Cyber Security Centre (NCSC) and other U.S. and international partners, have released the SVR Cyber Actors Adapt Tactics for Initial Cloud Access joint advisory. This advisory provides recent tactics, techniques and procedures used by Russian Foreign Intelligence Service (SVR) cyber actors — also known as APT29, the Dukes, CozyBear, and NOBELIUM/Midnight Blizzard — to gain initial access into a cloud environment.