Hudson Rock has new research revealing that infostealing malware has infected employees at major defense contractors — including Lockheed Martin, Boeing, and Honeywell . The research showed that U.S. Army and Navy personnel had their login details stolen — exposing VPN access, email systems, and classified procurement portals.
Even the FBI and Government Accountability Office (GAO) have active infections, exposing investigative and cybersecurity personnel, according to the research.
This begs the (terrifying) question: If these organizations — which are the backbone of U.S. national security — are infected, what does that say about their ability to defend against more sophisticated attacks? We need to get better at identifying, remeditating and preventing these kinds of intrustions, for sure. And MSSPs obviously have a huge role to play in ensuring our critical systems are protected!
Now, here's today's MSSP update. I'm at Right of Boom this week, so if you're here, find me and say hello! Or drop me a line at sharon.florentine@cyberriskalliance.com if you have news to share.
Today's MSSP Update
1. KeeperPAM updates: Keeper Security has updated its privileged access management (PAM) solution, the company announced today. The updates include a cloud-native solution that integrates PAM processes into Keeper's encrypted vault so that users can manage privileged credentials and secrets securely within a single platform.
2. Deepwatch acquires Dassana: Cyber resilience and security company Deepwatch has acquired Dassana, a security intelligence solutions company. The acquisition extends Deepwatch's innovation lead in powering cutting-edge cyber-resilient operations. By integrating Dassana's AI-powered risk and threat exposure management technology into its platform, Deepwatch will harvest vital threat insights that further enhance the productivity of its customers' security teams and help keep their critical information assets secure.
3. Dataminr names new CMO: AI-powered cyber risk solutions provider Dataminr has named Deb Wolf as the company's new chief marketing officer. Wolf was most recently CMO at Lookout, where she spearheaded marketing strategies around the company’s evolution from mobile to cloud security. She also brings a deep understanding of the enterprise software landscape from her tenures as CMO at Integrate and BetterUp. Wolf's mandate is to amplify Dataminr's story in its next growth phase. Congratulations!
4. Menlo Security acquires Votiro: Menlo Security has acquired Votiro, a data and file security platform that specializes in content disarm and reconstruction (CDR) and data loss prevention, the companies announced this week. Votiro’s AI-based solution addresses file security via the browser, email, collaboration tools and API flows. The expanded Menlo Security solution delivers zero-trust access to prevent data leakage and ensure secure file movement while allowing access. The deal expands the total available market for Menlo Security and significantly increases new revenue opportunities.
5. Cymulate updates threat validation platform: Cymulate has launched the latest evolution of the company’s security validation platform. The platform adds AI and automation features, including an AI-powered agent that guides blue and red teamers through creating validations specific to their focus, streamlined attack simulations that create easier assessments across the MITRE ATT&CK kill chain, a new attack scenario workbench for comprehensive validation assessments and modular and dynamic assessments that help test for new threats.
