Each business day MSSP Alert delivers a quick lineup of news, analysis, and chatter from across the MSSP, MSP and cybersecurity world. Today's market news also covers Bugcrowd, D3, CISA, Securonix, Cribl, Menlo Security, SentinelOne, Intezer, AppOmni, Sysdig and KnowBe4.
Reaching Our Inbox:
Send news, tips and rumors to Managing Editor Jim Masters: [email protected].
Today’s MSSP Alert Market News:
1. Rubrik, Mandiant Team Up: Rubrik, a zero trust data security company, has announced a new partnership and technology integration with Mandiant, part of Google Cloud. The collaboration brings together leaders in data security, incident response and threat intelligence, aiming to expedite customers’ threat detection and path to cyber recovery, the companies said. Breaking intrusions, active campaigns and evolving threats detected by Mandiant Threat Intelligence are now integrated into Rubrik’s threat monitoring capability providing threat intelligence to Rubrik Enterprise Edition customers.
2. Bugcrowd Debuts Pentesting Solution: Bugcrowd, a crowdsourced security specialist, has brought to market its Continuous Attack Surface Penetration Testing (CASPT) solution on the Bugcrowd Platform. This solution provides customers with a proactive security approach to continuously meet compliance goals and reduce their external risk asset exposure, the company said.
3. D3 Intros Ace AI: D3, a Security Orchestration, Automation, and Response (SOAR) specialist, has released Ace AI, a collection of new capabilities for D3’s Smart SOAR platform that applies AI to make security operations faster and more intuitive. D3 has also introduced announced its Legacy SOAR Migration Program, which enables organizations to move from underperforming SOAR tools to D3’s Smart SOAR in record time, with minimal burden on their team, the company said.
4. CISA Issues Ransomware Alert: The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) have released a joint advisory regarding BlackSuit ransomware activities spotted as recently as July 2024. BlackSuit ransomware is the evolution of the ransomware previously identified as Royal ransomware, which was used from approximately September 2022 through June 2023. BlackSuit shares numerous coding similarities with Royal ransomware and has exhibited improved capabilities, CISA said.
5. Securonix, Cribl Partner: Securonix, a Security Information and Event Management (SIEM) specialist, and Cribl, a data engine for IT and security provider, have formed a strategic partnership focused on providing customers with enhanced threat detection, based on a broader range of enterprise data being analyzed for AI-powered attacks. Securonix recently announced Securonix EON with a cybersecurity mesh architecture that integrates any security tool, cloud and data lake. This integration enables enterprise customers to leverage Cribl to deliver security-relevant data from various areas of the enterprise to Securonix's advanced threat and attack detection analytics, the companies said.
6. Menlo Bolsters Zero Trust Capabilities: Menlo Security, a browser security specialist, has announced enhancements to Menlo Zero Trust Access. The Menlo team released new findings as a follow up to the team’s recently released Global Cyber Gangs Threat Report, revealing new, evasive threat tactics targeting the browser. In a recent 90-day period, Menlo Security reports that it has identified three sophisticated HEAT campaigns targeting 40,000 high-value users, including C-suite executives. These campaigns employed highly sophisticated and evasive attacks, emphasizing the urgent need for zero trust solutions that go beyond what traditional security tooling can detect, the company said.
7. SentinelOne, Intezer Take on Rust Malware: SentinelOne, an AI-powered security company, and Intezer, a specialist AI-powered technology for autonomous security operations, have launched a project aimed at illuminating the blind spot surrounding Rust malware "so that threat researchers can better understand and accurately characterize the complex malware ecosystem before it reaches critical mass and blindsides the industry." In addition, SentinelOne and Google Cloud are now enhancing their collaboration to enable stronger enterprise cyber defense. By integrating SentinelOne’s autonomous endpoint protection with Google Cloud’s threat intelligence, the strategic partnership enables customers to strengthen their security posture, the company said.
8. AppOmni Advances SaaS Security: AppOmni, a SaaS security provider, has released a series of technology advances to deliver identity and threat detection capabilities to protect critical enterprise SaaS environments. The new features leverage identity-centric analysis, mass-scale event monitoring and normalization and a comprehensive dashboard to show trending risk and the overall security health of SaaS applications, the company said.
9. Sysdig Builds Cloud Security: Sysdig, a specialist in real-time cloud security, has launched Cloud Identity Insights, an expansion of its cloud detection and response (CDR) capabilities designed to correlate identity behavior with workload activity and cloud resources. Cloud Identity Insights can instantly detect compromised identities, help contain them in real time and leverage smart policy optimization to prevent future breaches, the company said.
10. KnowBe4 Issues Phishing Report: KnowBe4, a security awareness training and simulated phishing platform provider, has announced the results of its Q2 2024 phishing report. The results include the top email subjects clicked on in phishing tests showing HR business-related messages are still provoking the most action from employees leading to potentially harmful results.
