There's a new head of CISA on deck, TechCrunch reported: Sean Plankey has been nominated to head the Cybersecurity and Infrastructure Security Agency (CISA), according to a White House email sent Tuesday.
TechCrunch said, "Plankey has several years of experience working for the U.S. government. In 2013, Plankey gave cybersecurity support to U.S. forces deployed in Afghanistan, then worked at U.S. Cyber Command, the U.S. Coast Guard, and the U.S. Navy. He also worked in the previous Trump administration as a director for cyber policy on the White House’s National Security Council and later at the Department of Energy, according to Plankey’s LinkedIn."
Plankey would take over the role from Jen Easterly, who left the agency at the beginning of the new Trump term in January 2025. During his first term, Trump fired CISA’s inaugural director, Chris Krebs, for disputing false claims about election fraud.
Plankey’s nomination will now head to the Senate for a vote, though no date for that vote was provided.
Now, here's today's MSSP update. Drop me a line at sharon.florentine@cyberriskalliance.com if you have news to share or want to say hi!
Today's MSSP Update
1. ArmorCode's partner program: ArmorCode this week launched its ArmorCode Partner Program for value-added resellers (VARs), global system integrators (GSIs), and advisory firms. The program aims to expand the reach of ArmorCode’s security solutions and give partners resources to strengthen enterprise security. ArmorCode also introduced an ASPM Certified Professional (ACP) credential that validates channel partner solution engineers' (SEs) expertise.
2. Fortinet expands OT security platform: Fortinet has expanded its OT Security Platform to cover critical infrastructure and industrial sites, the company said. New enhancements include deeper OT-specific threat visibility with the FortiGuard OT Security Service, expanded ruggedized solutions for segmentation and 5G in harsh environments, and an upgraded OT SecOps portfolio for automated threat response and regulatory compliance tracking.
3. ICONICS SCADA vulnerabilities persist: Months after patches were released, dozens of internet-exposed ICONICS Suite SCADA servers —commonly used by manufacturing, energy, water and wastewater, government, and military entities — remained vulnerable to attacks from five high-severity flaws, according to CyberScoop. A pair of vulnerabilities, tracked as CVE-2024-7587 and CVE-2024-1182, stemmed from ICONICS' use of outdated tools and components for ICS interoperability, three of the security issues, tracked as CVE-2024-8299, CVE-2024-8300, and CVE-2024-9852, affect the latest iterations of its tools and could circumvent EDR systems, Palo Alto Networks Unit 42 threat researchers revealed.
4. Splashtop launches autonomous endpoint management: Remote access and support solutions provider Splashtop this week launched its autonomous endpoint management (AEM) solution to add automation to help manage, monitor and secure endpoints. The solution adds automation to vulnerability management, real-time asset discovery and management, patch management, policy management and more.
5. Forcepoint acquires Getvisibility: Forcepoint has signed a definitive agreement to acquire Getvisibility, an AI-powered Data Security Posture Management (DSPM) and Data Detection and Response (DDR) provider. Forcepoint and Getvisibility have been OEM partners for more than two years, and Getvisibility's DSPM, AI-Mesh, and DDR solutions are core to Forcepoint's data security solutions, the companies said. The acquisition will strengthen interoperability between the solutions and help customers better secure data across hybrid and AI environments.
