High cybersecurity product information of the week

Table of Contents

IndyKite seems to enhance knowledge trustworthiness with an identity-centric strategy

February 21: IndyKite has introduced a brand new model of its identity-powered AI enterprise data platform. The corporate claims its identity-centric strategy improves trustworthiness of key knowledge. An AI-driven danger rating guides use of the info, and the platform additionally offers supply and verification knowledge for every knowledge level. Actual-time analytics and perception discovery options help with choice making and risk detection and response, based on IndyKite.

Metomic provides “human firewall” options to scale knowledge safety workflows

February 20: Metomic has launched new “human firewall” options to its knowledge safety platform. The options apply to SaaS functions corresponding to Google, Slack, and Microsoft Groups and are designed to assist safety and compliance groups scale knowledge safety workflows for SaaS functions by involving workers within the danger remediation course of. Sharing this process with workers will enable for a better quantity of potential violations to be reviewed and addresses, based on Metomic. The corporate additionally claims that the human firewall options will enable workers to report false positives to safety groups or present justification for sharing enterprise knowledge. The human firewall options at the moment are out there to all Metomic clients.

Vectra AI launches 24/7 managed prolonged detection and response service

February 15: Vectra AI has launched Vectra MXDR, a worldwide managed prolonged detection and response service. Obtainable 24/7, Vectra AI is designed to defend in opposition to assaults in hybrid and multi-cloud environments. It offers assault floor visibility throughout identification, public cloud, SaaS, knowledge middle, and cloud networks and endpoints by integrating with EDR distributors, based on Vectra AI. Options embrace AI-driven assault sign intelligence, distant response and remediation, managed safety coverage configuration, and end-to-end detection and response protection. Vectra MXDR is on the market to present clients.

BigID provides entry governance controls

February 15: BigID has introduced new access governance controls for its cloud and hybrid knowledge safety and compliance platform. The brand new options enable clients to observe and handle entry throughout the cloud and on-premises environments. The corporate claims the brand new capabilities will enable organizations to mechanically establish. examine, and remediate entry rights violations throughout structured and unstructured knowledge. This may scale back the assault floor, mitigate insider danger, and allow a zero-trust strategy, based on BigID.

Infoblox brings AI-powered safety operations options to its BloxOne platform

February 15: Cloud networking and safety providers agency Infoblox has enhanced its BloxOne Menace Protection DNS detection and response resolution with the AI-powered SOC Insights safety operations resolution. SOC Insights is designed to assist safety analysts higher establish and examine safety occasions that matter and scale back response time. The corporate claims that SOC Insights consolidates particular person alerts into insights that present entry to machine, occasion, attacker infrastructure particulars, and Infoblox’s DNS intelligence knowledge. SOC Insights is on the market now.

Eureka Safety brings file-sharing product capabilities to its DSPM resolution

February 15: Information safety posture administration vendor Eureka Software program has introduced that its DSPM resolution has expanded to all main cloud providers with the power to handle file-sharing functions corresponding to Workplace 365, Google Drive, Field, and Dropbox. This permits the DSPM resolution to offer visibility and insights into how customers share, entry, and us knowledge throughout SaaS, IaaS, and PaaS options, the corporate claims.

Recorded Future releases generative AI assistant for risk intelligence

February 14: Intelligence firm Recorded Future has launched Recorded Future AI from beta. It’s designed to assist human analysts in figuring out international threats. Recorded Future AI is constructed on the corporate’s Intelligence Graph knowledge mannequin, and it’s able to monitoring and placing into context threats throughout cyber, bodily, and affect operations domains. Recorded Future claims its AI assistant may help enterprises and governments outline massive, advanced risk surfaces in each the bodily and cyber worlds.

ReversingLabs Spectra Guarantee makes use of AI to detect software program provide chain threats

February 13: Software program and file safety vendor ReversingLabs has launched Spectra Assure, which makes use of AI with advanced binary evaluation to detect malicious code and malware embedded in software program earlier than it’s deployed and with out the necessity to have its supply code. A construct examination within the new software identifies tampering and malware earlier than deploying software program throughout first-, second-, and third-party parts, based on the corporate. Spectra Guarantee can report points in massive, advanced software program packages in minutes or hours, ReversingLabs claims.

February 13: Seal Safety has introduced its presence with an LLM-powered open-source vulnerability remediation solution. It offers entry to safety patches throughout 5 languages, and the corporate claims it is ready to remediate 95% of essential and high-severity vulnerabilities recognized within the final 5 years. The software is designed to automate and scale vulnerability remediation with centralized management over the vulnerability patching course of.

Legit Safety add AI discovery to its ASPM platform

February 13: Legit Safety has introduced the addition of AI-powered discovery capabilities to its software safety posture administration (ASPM) platform. The brand new function is designed to detect the place software program builders use AI code. The corporate claims this offers safety leaders and software safety groups visibility into AI-related dangers from the infrastructure to software layers throughout the applying growth pipeline in order that they know the place to place safety controls. The brand new AI capabilities embrace safety coverage enforcement, real-time notifications of generative AI code, and alerts on LLM dangers.

Cyberhaven goals to cease insider threats with Linea AI

February 9: Cyberhaven has launched Linea AI, which makes use of the corporate’s proprietary massive lineage mannequin (LLiM) to detect insider threats. That LLiM analyzes workflows and predicts the subsequent possible motion or conduct to happen, flagging deviations. Cyberhaven claims the LLiM can have a look at the whole workflow throughout time for each knowledge merchandise throughout the enterprise. Options embrace danger detection and prioritization, incident abstract, sensible remediation that recommends responses, and guided prevention for real-time intervention.

Qualys TotalCloud 2.0 provides SaaS safety, provide chain danger mitigation, and extra

February 8: The Qualys TotalCloud 2.0 model of its AI-based CNAPP platform now affords a single view of cloud danger and prolonged safety to SaaS functions. TruRisk Insights offers a single prioritized view of cloud dangers, which Qualys claims will streamline the identification of high-risk property. TotalCloud 2.0 has additionally integrated SaaS safety posture administration with the CNAPP platform. Different new options embrace provide chain danger administration the place TotalCloud 2.0 scans open-source software program pre- and post-deployment, and operationalized danger discount, which the corporate claims removes siloes between IT and safety with ITSM integrations. TotalCloud 2.0 is on the market now.

SailPoint broadcasts two merchandise to assist construct identification packages

February 8: SailPoint Applied sciences has launched two choices to its identification administration portfolio. The SailPoint Identity Security Cloud Standard suite is focused to corporations simply beginning identification safety initiatives. It has a set of core capabilities that centralizes identity-related knowledge, permitting organizations to manipulate entry for all identities throughout the enterprise in a scalable means, based on Sailpoint. The brand new Customer Success Portfolio affords three tiers of coaching and help, together with configuration help, adoption workshops, and program oversight, evaluation, and steerage.

AppViewX, Fortanix associate to ship safe digital identification administration and code signing

February 7: Machine identification administration agency AppViewX and knowledge safety firm Fortanix are combining their options to ship cloud-based safe digital identification administration with code signing in a single package deal. AppViewX’s Digital Belief Platform and Fortanix’s Information Safety Supervisor (DSM) collectively tackle two safety use instances: the administration of machine identities throughout hybrid multi-cloud environments and simplified safe code signing for improved software program provide chain safety, based on a joint press launch. The mixed providing is on the market by means of both vendor, joint channel companions, or the AWS Market.

F5 broadcasts new AI capabilities to guard AI-powered functions

February 7: Multi-cloud safety agency F5 has enhanced its Distributed Cloud Services solution with API code testing and telemetry evaluation. The corporate additionally introduced that it’s implementing AI throughout its whole product portfolio. The corporate claims these enhancements present “AI-ready” API and software safety. The AI enhancements are from expertise F5 lately acquired from Wib, they usually allow vulnerability detection and observability in the course of the software growth course of and earlier than manufacturing. F5 claims it will possibly now supply API uncover, testing, posture administration, and runtime safety in a single platform.

Akamai’s Content material Protector goals to cease scraping assaults

February 6: Akamai Applied sciences has introduced the provision of its Content Protector software, which the corporate claims stops malicious scraper bots with out blocking professional visitors. It is ready to detect and mitigate these malicious scrapers. Featuresinclude protocol fingering that checks how guests hook up with your web site to find out if they’re professional, analysis of JavaScript code, the power to tell apart between human and machine conduct, and danger classification for visitors based mostly on anomalies discovered.

Teleport Coverage centralizes coverage administration for infrastructure entry

February 6: Teleport, which focuses on infrastructure entry, has launched Teleport Policy, a software designed to unify entry management and coverage throughout a company’s infrastructure. The brand new product offers visibility into how engineers, customers, and workloads entry infrastructure and knowledge. The corporate claims this permits their clients to establish points corresponding to inappropriate privileges and take away them. One other function is meant to hurry investigations and responses through a unified Entry Graph view of entry relationships. Teleport Coverage is an extension of the corporate’s Teleport Entry platform.

Metomic launches Metomic for ChatGPT

February 5: Information safety agency Metomic has launched Metomic for ChatGPT, which the corporate claims will assist defend delicate knowledge whereas utilizing OpenAI’s generative AI software. The brand new resolution offers visibility to what knowledge is uploaded to ChatGPT. Metomic for ChatGPT is a browser plug-in, permitting it to establish when an worker logs into the ChatGPT web site. It then scans the info going into the generative AI platform in actual time. It then alerts the safety workforce if delicate knowledge is being moved.

February 5: Important infrastructure safety firm OPSWAT has broadcasts enhancements to its line of MetaDefender Kiosk products. Described as “peripheral media scanning stations,” MetaDefender Kiosk merchandise are units that scans detachable media for threats. OPSWAT has added a Kiosk Mini type issue to the road that’s supposed to be extra accessible, moveable, and versatile. It might probably additionally help tabletop and rugged environments. MetaDefender Kiosk can be now built-in with OPSWAT’s MetaDefender Sandbox and Media Firewall merchandise, enabling adaptive risk evaluation for zero-day risk detection. Lastly, MetaDefender Kiosk Stand helps VESA-mountable Kiosks and units. The three-bay stand helps a number of detachable media varieties and features a exhausting disk drive bay.

Varonis introduces managed detection and response for the info stage

February 5: Varonis Techniques’ new Managed Data Detection and Response (MDDR) service goals to establish and cease threats on the knowledge stage in addition to endpoints. Options of the 24/7 monitoring service embrace an AI evaluation engine that automates investigations, a 30-minute response window for ransomware and 120-minute response for different alerts, and a deployment time measured in hours, based on the corporate. MDDR is delivered on prime of Varonis’s Information Safety Platform and is on the market now.

Secureworks Menace Rating makes use of AI to prioritize alerts

February 1: Secureworks has launched its AI-powered Threat Score, which is meant to assist safety analysts prioritize safety alerts. The software identifies which alerts are most probably to have a detrimental influence based mostly on the group’s operations. The corporate claims that by filtering out noise within the alerts, Menace Rating can scale back safety analyst workloads by about 50%. Menace Rating is on the market as a part of Secureworks Taegis XDR.

OX goals to eradicate guide software safety practices with new ASPM platform

January 31: OX Safety’s new software safety posture administration resolution, Active ASPM Platform, unifies software safety practices by offering visibility, traceability, prioritization, and automatic no-code workflow-driven response, which the corporate refers to as an “lively strategy” to AppSec. OX claims this strategy ends in a steady and extra correct focusing on of essential threats, which reduces alert fatigue. The answer additionally offers assault path evaluation, lively context evaluation, and pipeline invoice of supplies.

Vade makes use of AI to boost spear-phishing detection

January 31: Menace detection and response vendor Vade has improved its spear-phishing detection engine with generative AI. The corporate claims the brand new expertise will enable its engine to higher defend in opposition to superior threats, together with these created by AI, and supply a larger diploma of confidence of detection. The spear-phishing engine has been skilled on conventional and AI-created spear-phishing electronic mail messages. The brand new spear-phishing engine is now carried out in its Vade for M365 electronic mail safety suite.

SentinelOne enhances risk searching capabilities of WatchTower and WatchTower Professional

January 30: Sentinel one has introduced the final availability of latest machine-learning and superior behavioral threat-hunting capabilities for its WatchTower and WatchTower Professional managed risk searching providers. The brand new capabilities embrace anomalous and suspicious conduct detection, expanded protection in opposition to recognized and rising threats, 24/7 real-time risk searching, and entry to WatchTower’s in-house risk intelligence library. As earlier than, the brand new capabilities are backed by human specialists.

New connector offers Varonis wider database help

January 30: Varonis has enhanced its knowledge safety posture administration capabilities with the addition of a universal database connector, which permits its platform to combine with linked databases hosted on-premises or within the cloud. The corporate claims this integration will enable its clients to make use of Varonis’s library of classifiers and scalable structure to centralize knowledge classification. The Varonis platform works with structured, semi-structured, and unstructured knowledge.

Keyfactor affords PKI integration with Quantinuum Quantum Origin

January 30: Identification safety supplier Keyfactor has partnered with quantum computing firm Quantinuum to supply a public key encryption (PKI) platform that integrates with Quantinuum’s Quantum Origin quantum entropy resolution. With this integration, Keyfactor EJBCA can now present stronger root of belief to offer certificates, based on Keyfactor, and offers safety in opposition to potential misuse of quantum computing expertise.

Deep Intuition Prevention for Purposes 3.0 enhances file add, software storage protections

January 25: Deep Intuition has introduced the three.0 model of its Deep Instinct Prevention for Applications (DPA) AI-based deep-learning framework. DPA 3.0, agentless on-demand anti-malware resolution, now has improved file add protections and software storage safety. The brand new deep-learning capabilities use neural networks to keep away from shortcomings of different options corresponding to insufficient scanning, challenges introduced by adversarial AI, or incapability to cease unknown malware, based on the corporate. Not like different instruments that require frequent cloud connections to remain updated on risk intelligence, DPA 3.0 requires updates solely a couple of times a 12 months. This partly makes it appropriate to be used in air-gapped environments.

Black Kite introduces month-to-month ransomware dashboard

January 24: Black Kite, a supplier of third-party cyber danger intelligence, has launch a monthly ransomware dashboard that reveals graphs, knowledge, developments, and assault patterns. The corporate claims it analyzes the highest ransomware indicators to establish widespread vulnerabilities that ransomware risk actors exploit. Black Kite has additionally developed its Ransomware Susceptibility Index (RSI) utilizing knowledge and machine studying to offer an outline of industry-specific dangers, based on the corporate.

Zscaler launches Zero Belief SASE constructed with AI

January 23: Cloud safety supplier Zscaler has introduced its Zero Trust SASE. Construct with Zscaler’s Zero Belief AI, the brand new SASE is designed to scale back the associated fee and complexity of implementing zero-trust safety throughout customers, units, and workloads, in accordance the the corporate. Zscaler additionally introduced that its Zero Belief SD-WAN is now usually out there together with new plug-and-play home equipment that the corporate claims will assist its clients modernize safe connectivity for its numerous services.

Mitiga boosts incident response with Kroll partnership

January 23: Cloud and SaaS incident response agency Mitiga has partnered with Kroll, including that firm’s incident response and litigation providers to the Mitiga Cloud and Incident Response Automation (CIRA) resolution. The corporate claims that the mixing of Kroll’s providers will enable its clients to higher adjust to new US Securities and Change Fee (SEC) laws for incident reporting. Mitiga may even supply its clients different Kroll providers at a reduction, together with purple workforce workout routines, penetration testing, and digital CISO.

PQC Starter Package from Thales and Quantinuum to assist put together for post-quantum cryptography

January 22: In collaboration with Quantinuum, Thales has launched the PQC Starter Kit, which is designed to assist organizations put together for post-quantum cryptography (PQC) challenges. The package permits them to check quantum-hardened encryption keys and higher perceive the potential influence of PQC on the safety of their infrastructure, based on Thales. PQC Starter Package makes use of present NIST proposed algorithms that organizations can use to check safety use instances corresponding to PKI, code-signing, TLS, and web of issues (IoT). The primary iteration of the package incorporates Luna HSMs and Quantinuum’s quantum random quantity generator expertise, which permits organizations to find out whether or not their keys are securely generated and saved whereas utilizing PQC algorithms.

ArmorPoint broadcasts cybersecurity program administration options

January 20: ArmorPoint has expanded its cybersecurity providers with a suite of cybersecurity program management solutions, referred to as Managed Threat and Managed Technique. The corporate mentioned its objective was to offer a unified strategy to cybersecurity by integrating danger administration, strategic planning, and real-time risk detection. This permits organizations to take a “proactive and adaptive strategy to cybersecurity,” based on the corporate.

VulnCheck IP Intelligence tracks attacker infrastructure and susceptible IPs

January 18: Exploit intelligence firm VulnCheck has launched its IP Intelligence function set that tracks attacker infrastructure and susceptible Web Protocol (IP) addresses in actual time. The brand new performance cross-references internet-connected datasets in opposition to VulnCheck’s personal exploit and vulnerability intelligence info, offering perception round these units and attackers’ command-and-control infrastructure, based on the corporate. IP Intelligence offers a downloadable and searchable dataset to establish susceptible internet-connected units. It additionally generates lists of IP addresses to be used in block lists.

Fortinet launches Wi-Fi 7-enabled safe networking resolution

January 17: Community options supplier Fortinet has introduced what it claims to be the first secure networking solution integrated with Wi-Fi 7. Forti-AP 441K is a Wi-Fi 7 entry level, and FortiSwitch T1024 helps Wi-Fi 7 bandwidth necessities with 10 gigabit Ethernet entry and 90W Energy over Ethernet (PoE) expertise. Each are a part of the Fortinet Safe Networking resolution and combine with AIOps and FortiGuard AI-Powered Safety Providers. Wi-Fi 7 is the most recent wi-fi expertise designed to help wi-fi units operating data-heavy functions.

Salt Safety provides API posture governance to its API Safety Platform

January 17: API safety agency Salt Safety has enhanced its API Protection Platform, together with the addition of an API posture governance engine, an API filtering and querying capabilities, and improved behavioral risk response capabilities. The API posture governance engine helps organizations to create company requirements for API posture and assess compliance with these requirements, {industry} finest practices, and regulatory necessities. The corporate claims it’s going to preserve API lifecycle stakeholders in sync and guarantee safety requirements are adopted all through the API lifecycle. New API filtering and querying capabilities enable for higher API asset discovery and administration whereas offering particulars about their objective, utilization patterns, and dangers. Enhanced behavioral response will enable SecOps groups to higher prioritize, triage, and analyze API-related safety occasions, based on Salt. Different enhancements embrace higher sharing of API intelligence and enterprise onboarding and operationalization enhancements.

Residing Safety broadcasts Unify Energy Insights for danger operations

January 17: Human danger administration agency Residing Safety has launched Unify Power Insights, which is meant to offer visibility into which workers are most susceptible to dangers corresponding to phishing, account compromise, malware, or knowledge loss. It does so by gathering intelligence knowledge from a number of sources corresponding to identification administration and safety instruments. Based on Residing Safety, Unify Energy Insights permits safety groups to watch grouping of person conduct and detect spikes in dangerous actions. The answer additionally offers ideas to mitigate these dangers.

Savvy launches Identification-First Safety to handle IAM permissions

January 16: SaaS safety platform supplier Savvy has introduced Identity-First Security, which is designed to find dangers related to mixtures of identification entry administration (IAM) permissions, person conduct, and enterprise context. Based on Savvy, Identification-First Safety permits organizations to establish dangers corresponding to rogue directors, compromised accounts, shadow identities, shared accounts, incomplete offboarding, and extra. The answer additionally offers automated playbooks that set “safety guardrails” that encourage customers to mitigate dangers earlier than they turn out to be safety incidents, the corporate claims.

GTT Communications brings Fortinet SASE to its MSSP providing

January 16: Managed community and safety service supplier GTT Communications now offers secure access service edge (SASE) capabilities powered by Fortinet. This consists of Fortinet’s zero belief community entry (ZTNA), firewall-as-a-service, cloud entry safe dealer (CASB), and safe internet gateway (SWG) options, all working alongside GTT’s Managed SD-WAN providing. The Fortinet options are deployed inside GTT’s community infrastructure and all visitors is maintained on the corporate’s international IP spine. GTT claims it will scale back latency, jitter, and packet loss in addition to enhance availability.

Wiz AI-SPM now out there for the OpenAI platform

January 11: CNAPP supplier Wiz has introduced an OpenAI SaaS connector that extends help for its AI-SPM AI safety software to the OpenAI API platform. The software offers OpenAI builders with visibility into their OpenAI pipelines and permits them to higher mitigate dangers throughout the cloud and OpenAI through the Wiz Safety Graph, the corporate claims. Safety groups can now have visibility into new coaching jobs that AI builders create in a single view. AI-SPM additionally permits for assault path evaluation to detect dangers. The Wiz OpenAI SaaS connector for AI-SPM is on the market now.

Dasera provides Microsoft 365 to its knowledge safety posture administration platform

January 10: Information safety posture administration (DSPM) agency Dasera has expanded its platform to incorporate protections for Microsoft 365. This permits larger visibility of knowledge throughout OneDrive, SharePoint, and Groups, based on the corporate, permitting organizations to higher establish and handle delicate knowledge. With its DSPM platform, Dasera claims the enhancement will assist optimize privateness processes utilizing its coverage engine in addition to assess danger from information shared in Microsoft 365 apps.

Cohesity Cloud Providers now helps Microsoft Azure workloads

January 9: Cohesity Cloud Providers (CCS) has added help for Microsoft Azure workloads, particularly the backup and restoration of Azure digital machines (VMs) and Azure SQL databases. The brand new Azure VM capabilities inside CCS embrace backup and restoration of a whole VM in place or to an alternate location, area, or useful resource group, and help for Azure VM backup utilizing personal endpoints with a shared entry signature. CCS Azure SQL database capabilities embrace full backups on a customizable schedule, automated backups, portability of SQL databases to and from the cloud, and immutable backups saved outdoors the tenant.

TitanHQ broadcasts PhishTitan anti-phishing resolution

January 9: Cloud-based electronic mail safety options supplier TitanHQ has launched PhishTitan Built-in Cloud E-mail Safety (ICES). The answer works inside Microsoft 365 to scan inside and exterior electronic mail messages. It has native and API-based integration with Change On-line Safety (EOP) and Microsoft Defender. The corporate claims that PhishTitan ICES will block and remediate enterprise electronic mail compromise, account takeover, VIP impersonation, and zero-day threats. The product is on the market now.

SpecterOps provides Lively Listing Certificates Providers safety to BloodHound Enterprise

January 9: SpecterOps has up to date its BloodHound Enterprise (BHE) platform with new attack paths for Microsoft Active Directory Certificate Services (ADCS). The BHE platform is designed to take away identification assault paths in Microsoft Lively Listing and Entra/Azure AD. The brand new ADCS assault paths concentrate on widespread misconfigurations that enable attackers to steal certificates, obtain account persistence, and acquire management over Lively Listing domains, based on the corporate.

LogRhythm releases updates to LogRhythm SIEM and LogRhythm Axon

January 4, 2024: LogRhythm has up to date its self-hosted LogRhythm SIEM and cloud-native LogRhythm SaaS SIEM platforms. Enhancements to the previous embrace extra help for onboarding new Beats and Open Collectors from a single location, simplified Home windows occasion log onboarding, improved analyst workflows whereas reviewing alarm notifications, and an expanded library of supported log sources. Enhancements to LogRhythm Axon embrace a brand new interactive single investigation display that gives contextual case insights with drill-down of log sources and safety analytics; an improved assisted search function that implies current searches, search lists, and search queries; a brand new collector for Microsoft Workplace 365 Administration API, and extra environment friendly Axon Agent administration for on-premises knowledge assortment.

Valimail launches Align to fulfill Google and Yahoo electronic mail authentication necessities

January 4, 2024: Valimail, a supplier of DMARC, automated authentication, and anti-phishing options, has launched Valimail Align, which is designed to validate compliance standing for brand spanking new sender authentication necessities from Google and Yahoo. Beginning in February, Gmail and Yahoo bulk electronic mail senders might be required to authenticate outgoing mail or danger being blocked. Valimail claims that Align checks for alignment between the SPF and DKIM electronic mail protocols to fulfill the brand new necessities. Valimail’s automation suite can then be used to succeed in compliance in a matter of days, based on the corporate.

Mitiga broadcasts Investigation Workbench to evaluate cloud and SaaS incidents

December 19: Mitiga has added Investigation Workbench to its line of cloud and SaaS incident response options. The corporate claims its new software will present extra readability on all multi-cloud and SaaS actions by means of a single view. Investigation Workbench, a part of Mitiga’s IR2 cloud investigation and response automation (CIRA) platform, is designed to present safety operation middle groups visibility into chains of occasions throughout their cloud and SaaS atmosphere. Based on Mitiga, this permits for quicker and less complicated willpower of materiality of a cyber occasion in order that they will reply appropriately.

Kasada enhances it bot protection platform

December 19: Bot administration agency Kasada has enhanced its bot defense platform and claims it will possibly now higher defend in opposition to the most recent strategies attackers use to evade detection. New options embrace randomized and dynamic defenses throughout its structure to make them tougher to bypass, machine language anomaly detection, integrity checks on client-side knowledge assortment, and assault analytics for classification, drill-down, and filtering. The brand new enhancements can be found now to all Kasada clients.

AI-powered AskOmni bot designed to help with SaaS safety

December 19: SaaS safety posture administration (SSPM) agency AppOmni has launched AskOmni, which it describes as an AI-powered SaaS safety assistant. AskOmni works with the AppOmni SaaS safety platform to permit pure language queries for widespread SaaS safety choices. Its generative AI expertise helps safety directors to extra shortly establish and remediate points, the corporate claims. Different options embrace an context-sensitive chat interface and notifications, danger evaluation, real-time risk intelligence, and automatic code era for situation decision. AskOmni is now available as a tech preview and might be rolled out in phases throughout 2024

Secure Safety provides module to help in SEC Compliance

December 13: Secure Safety has added a module to its platform to help with attaining compliance with SEC reporting necessities. Secure Safety, a specialist in AI-driven cyber danger administration, mentioned the SAFE Materiality Assessment Module will “allow safety and danger leaders to attain SEC compliance by estimating and monitoring materiality of cyber incidents.”

The corporate mentioned in a press launch that the module is predicated on a tunable issue evaluation of data danger (FAIR) materiality evaluation mannequin (MAM). “SAFE Materiality Evaluation Module permits organizations to mannequin estimated monetary losses from prime danger eventualities with FAIR-MAM to cost-effectively goal safety or cyber insurance coverage investments,” mentioned COO Pankaj Goyal. “This permits them to leverage the insights to organize for the possible monetary influence to comply with. The SAFE Materiality Evaluation Module is a game-changer for safety and danger leaders.”

Telaeris broadcasts RTLS emergency mustering system

December 13: Telaeris, a supplier of handheld options for bodily entry management programs, has introduced its XPressEntry Real-Time Location Systems (RTLS) Emergency Evacuation Mustering system. Powered by HID’d Bluetooth Low-Power (BLE) beacons and gateways, the brand new product offers an automated technique to account for badged employees and guests in emergency conditions. Strategically positioned BLE beacons preserve observe of badge places, whereas gateways are positioned at designated emergency meeting areas, so the system is aware of the situation and identification of lacking individuals.

Google Cloud broadcasts normal availability of Duet AI in Safety Operations

December 13: Google Cloud’s Duet AI in Safety Operations is now generally available. Introduced earlier this 12 months on the RSA Convention, Duet AI in Safety Operations can search by means of massive knowledge units utilizing natural-language queries, mechanically generate summaries about case knowledge and alerts, and supply context and proposals for remediation.

Duet AI in Safety Operations is included with Google Cloud’s Safety Operations Enterprise and Enterprise Plus packages. Google Chronicle clients may have free entry to Duet AI till March 5, 2024.

Notion Level launches safety consciousness coaching program

December 13: Menace prevention supplier Notion Level mentioned it has launched a brand new safety consciousness coaching program for its clients that might be built-in into its Superior E-mail Safety product. This system is meant to assist organizations counter superior social engineering assaults by specializing in worker conduct and tailoring cybersecurity coaching to particular wants, the corporate mentioned in a press release. The coaching program leverage providers from coaching providers supplier DCOYA and affords behavior-centric safety consciousness coaching to counter cyberattacks together with superior social engineering.

“This system leverages machine studying algorithms to seamlessly combine finest practices from behavioral psychology and advertising and marketing strategies, automating coaching that’s tailor-made to the particular wants of every worker,” the corporate mentioned. “This reduces the chance of profitable cyberattacks, knowledge breaches, and different malicious actions.”

AI-powered analytics integrated into Zscaler

December 12: Cloud safety supplier Zscaler has added Enterprise Insights, an AI-driven analytics software, to its Enterprise portfolio. Enterprise Insights will allow organizations to curtail SaaS sprawl and optimize workplace utilization to enhance office expertise whereas saving cash, the corporate claims.

The corporate mentioned it has additionally integrated enhancements to the broader portfolio embrace new AI-powered improvements inside its Zscaler Risk360 and Zscaler Digital Expertise Monitoring merchandise. The additions had been documented in a company blog.

Qmulos introduces real-time, data-driven compliance automation and auditing updates

December 12: Compliance, safety, and danger administration automation supplier Qmulos has introduced the final availability of its Q-Compliance V4.4.0 and Q-Audit V3.7.0 platforms. “The newest releases of each merchandise add seamless workflow and ticketing capabilities to allow customizable processes for organization-specific safety and compliance investigations, escalations, and approvals,” the corporate said in a press release.

Q-Compliance V4.4.0 introduces customizable system authorization workflows designed to offer organizations with streamlined authorization requests and approvals for his or her steady authority to function course of, the corporate mentioned. Q-Audit V3.7.0 consists of alerting capabilities with ticketing workflows to offer real-time insights and actionable steps to fortify defenses in opposition to insider threats and different malicious actions. Extra info was made out there on the company’s blog.

Censys provides threat-hunting tiers and enhancements

December 12: Menace-hunting intelligence platform Censys has added two new product tiers to its search software, Censys Search Solo and Censys Search Groups. The additions are a part of a collection of strategic initiatives to boost the safety group, together with the introduction of threat-hunting boot camps, the Censys Beta Workshop and vital upgrades to product infrastructure, the corporate said in a press release. Every tier is on the market month-by-month or on an annual foundation, Censys mentioned.

“Empowering the risk intelligence group is considered one of Censys’s largest priorities, and with these two new product tiers, we will proceed to assist researchers improve their risk searching work, regardless of the scale of their workforce,” mentioned Censys CEO Brad Brooks.

Descope Positive-Grained Authorization permits granular entry management

December 12: Descope has launched an replace to its authentication and person administration software program as a service platform by combining roles with relationships to create versatile entry management.

With Descope’s SDKs and APIs, Positive-Grained Authorization (FGA) can outline and assign permissions based mostly on relationships between entities, enabling them to arrange authorization programs that may match the nuances of their enterprise. FGA permits organizations so as to add relationship-based entry management (ReBAC) capabilities to their functions.

The brand new performance permits organizations to outline a schema itemizing out the forms of entities and the doable relationships that exist inside their app; retailer the schema in order that it may be queried, managed, and up to date as relationships evolve; construct out relationships between particular entities based mostly on the prevailing schema; and add checks throughout the app that may seek advice from the outlined relationships earlier than making authorization choices.

Nedap launches Entry AtWork SaaS entry management system

December 11: Nedap has launched a software-as-a-service (SaaS) entry management system referred to as Entry AtWork that the corporate claims will present “corporations seeking to change their outdated on-premises programs with fashionable and easy-to-use software program that gives higher insights with much less effort and smaller funding.”

The brand new system will help small to medium-size enterprises wanting in managing bodily entry throughout a number of websites, Nedap mentioned in a post on its website. It operates on an authorization mannequin that allows directors to handle entry based mostly on hierarchical groups and zones. The answer is GDPR compliant and consists of such safety measures as redundant and safe internet hosting of knowledge in licensed datacentres throughout the European Union.

Fortinet provides Gen AI assistant to SIEM, SOAR platforms

December 11: Fortinet has added a generative AI assistant, Fortinet Advisor, to its FortiSIEM safety info and occasion administration resolution and to FortiSOAR the safety orchestration, automation, and response providing. Based on Fortinet, Advisor is designed to assist SecOps groups examine and remediate threats quicker.

Fortine Advisor options embrace decoding safety alerts and producing summaries, helps analysts by accepting pure language queries and returning helpful outcomes, suggests risk remediation plans and helps to generate playbook templates translating processes to actionable plans. The assistant might be repeatedly up to date by Fortinet AI and product specialists with the most recent risk info.

Nimbus-T World introduces Nimbus-Key ID & Authentication System

December 11: Nimbus-T World has added its Nimbus-Key ID & Authentication to the corporate’s line of identification and authentication merchandise. It’s an enterprise-level passwordless authentication resolution that makes use of a dynamically encrypted Nimbus-Key ID. Every person will get their very own international ID, which the system verifies utilizing know-your-customer (KYC), AI, and biometrics strategies.

Qrypt and Los Alamos Nationwide Labs develop quantum random quantity generator

December 7: Qrypt and Los Alamos Nationwide Labs (LANL) have developed Qrypt’s Quantum Random Number Generation (QRNG), which might be a part of Qrypt’s cloud-based Quantum Entropy and Quantum Key Era providers by serving to generate “true” quantum randomness. Qrypt and LANL use photon bunching to advance provable QRNG by meticulously filtering out classical noise, isolating the quantum impact important for figuring out the system’s minimal entropy, based on Qrypt.

Netskope completes roll out of Localization Zones

December 7: Netskope has accomplished the rollout of Localization Zones to its NewEdge safety personal cloud, first launched in February 2023. It offers a localized expertise for over 220 international locations and territories. The localization zones allow higher digital expertise as if going direct-to-net. It additionally offers native language and localized content material help for web sites, in addition to entry to geo-fenced content material and functions, even when there is no such thing as a in-country knowledge middle.

Coro 3.0 combines EDR, SASE, and electronic mail safety right into a single platform

December 6: Coro has launched its 3.0 model of its modular cybersecurity platform. Aimed toward midmarket corporations, Coro 3.0 has 14 built-in modules together with endpoint detection and response (EDR), safe entry service edge (SASE), electronic mail safety, knowledge governance, next-generation firewall (NGFW), and DNS filtering.

The corporate claims its new platform protects six key enterprise domains: cloud apps, endpoints, electronic mail, delicate knowledge, community, and customers. All of the modules will be managed and monitored by means of a single dashboard. Communication among the many modules is dealt with by an AI-driven knowledge engine that, based on Coro, mechanically remediates threats and surfaces solely probably the most essential occasions.

Coro sells every module individually or in bundles. Every module begins at $4 per person, per 30 days. The price for all 14 modules begins at lower than $18 per person, per 30 days.

Genetec broadcasts new model of Safety Heart

December 5: Unified safety, public security, operations, and enterprise intelligence supplier Genetec has launched a brand new model of its flagship Security Center platform, transferring it to a steady supply strategy.

The replace provides new options together with mapping enhancements, together with a brand new map widget for dashboards and improved zoom conduct and configuration enhancements for authentication providers. The corporate mentioned it plans to launch extra options for Safety Heart all through 2024 to allow superior workflow actions.

Utility safety coaching supplier Safety Journey provides {industry} normal help

December 5: Coding and AppSec coaching supplier Safety Journey has added industry standard support capabilities to its platform. The corporate says it’s platform now consists of help for Internet Content material Accessibility Pointers (WCAG), System for Cross-Area Identification Administration (SCIM) and continued compliance with SOC2 Kind 2.

“The brand new capabilities imply massive enterprises can now present software safety schooling to their growth groups from a platform that meets safety, international accessibility, and automatic person provisioning necessities,” Safety Journey mentioned in a press launch.

These options be sure that in-depth coaching packages are offered to all learners together with those that are sight and hearing-impaired, streamline person entry and lifecycle administration, and supply further assurances on the rigorous safety of the platform.

Cloudbrink provides firewall-as-service to zero-trust entry platform

December 5: Cloudbrink has added firewall-as-a-service (FWaaS) to its zero-trust access solution that it says permits admins to set granular controls based on static and dynamic properties of end-users and their units.

The corporate, which offers zero-trust software connectivity for hybrid workforces, claims that offloading remote-user safety features improves the steadiness of present firewalls and the community efficiency skilled by distant customers.

“Present firewalls had been by no means designed with a big work-from-anywhere workforce in thoughts,” Cloudbrink CEO Prakash Mana mentioned in a press launch. “Our FWaaS takes care of the distant customers, leaving the prevailing firewall to do the roles it was supposed for — corresponding to Layer 3 safety in opposition to DDoS assaults. For those who’re solely utilizing a firewall to guard a distant workforce, the Cloudbrink service can change it altogether.”

Cloudbrink’s FWaaS static properties embrace guidelines about what assets or functions will be accessed by people and the corporate mentioned it plans to launch dynamic properties masking machine compliance in addition to prolonged reporting capabilities enabling safety and networking groups to identify anomalies based mostly on person conduct and alternatives to tune software efficiency.

Varonis launches automated safety for knowledge in multi-cloud environments

December 5: Varonis has updated its cloud-native platform to assist clients repeatedly uncover regulated knowledge, remediate misconfigurations and extreme entry, and cease assaults on knowledge in providers corresponding to Azure Blob and AWS S3, RDS, and unmanaged databases in EC2.

The replace was designed to enhance customers’ entry to a centralized overview of knowledge and cloud safety posture. It additionally goals to assist uncover and classify delicate knowledge saved in Azure Blob and AWS databases; establish and remediate publicity danger by means of extreme entry, misconfiguration, and third-party functions; and monitor exercise to detect and examine threats throughout the cloud ecosystem.

Databarracks launches cloud-based restoration touchdown zone

November 30: Databarracks launched Jump-Start, a preconfigured, cloud-based catastrophe restoration touchdown zone. By utilizing infrastructure as code, assets, networking, safety, and governance will be activated for restoration.

Databarracks claims that deploying the catastrophe restoration within the cloud by means of infrastructure as code means it’s remoted, safe and unaffected by points to manufacturing. “Restoration is accelerated as a result of we convey the backups and the restoration atmosphere collectively,” Databarracks MD James Watts mentioned in an announcement.

The profit, based on the corporate, is that there is no such thing as a want for various {hardware} out there or a restoration web site.

Uptycs broadcasts Cross-Cloud Anomaly Detection Engine

November 29: Uptycs introduced its Cross-Cloud Anomaly Detection Engine, which is, based on the corporate, able to analyzing billions of occasions in near-real time. The software helps establish potential breaches on workloads operating on AWS and hybrid multi-cloud environments.

Uptycs makes use of machine studying strategies and correlates anomalies with MITRE Engenuity’s ATT&CK Evaluations: Enterprise detections to reduce the time to detect risk conduct.

Piiano launches code analyzer

November 29: Piiano has launched code analyzer Flows. The software is designed to repeatedly analyze supply code in the course of the growth course of and to trace when, the place and the way delicate knowledge is getting used and saved. Piiano claims the software finds potential knowledge leaks inside supply code and ensures that delicate info is protected earlier than the code reaches manufacturing.

A trial, restricted model of Flows might be out there without cost till the tip of 2023. After that the pricing mannequin will rely on the variety of scans and variety of code repositories.

Skyhawk provides AI-based, autonomous purple teaming to platform

November 28: Skyhawk Safety has launched an AI-based, autonomous purple workforce to its platform to offer adaptive cloud risk detection and response.

The addition of its Steady Proactive Safety function to Skyhawk’s cloud risk detection and response Synthesis Safety Platform repeatedly enhances the safety of a buyer’s cloud, the corporate mentioned in a press launch.

Based on Skyhawk, the brand new providing repeatedly analyzes buyer cloud infrastructure, proactively runs assault simulations in opposition to it and makes use of the outcomes to organize verified detections, validated automated responses and remediation suggestions to make sure the cloud has the freshest safety defenses in place.

This course of consists of studying and automatic adaptation of risk detection to allow safety groups to take proactive and adaptive approaches to safety technique. The function runs an AI-based purple workforce in opposition to an AI-based blue workforce to find least-resistance paths, simulating assaults in opposition to them and utilizing the outcomes to enhance safety.

Lacework launched gen AI assistant to help alert response

November 28: Lacework launched a generative AI assistant to assist safety groups reply to alerts from the Lacework platform. Assistive AI is designed to assist groups perceive why they need to have a look at a specific alert and in addition affords steerage on the right way to examine and tackle the problem.

The assistant combines the insights generated from Lacework Polygraph machine studying with the assistive expertise from LLM’s. Lacework additionally makes use of generative AI mannequin providers from Amazon Bedrock, experimenting with totally different fashions.

Immuta integrates Information Safety Platform with Amazon S3 

November 27: Information safety agency Immuta has launched native integration between its Immuta Information Safety Platform and Amazon’s Easy Storage Service (Amazon S3) object storage service. This integration offers clients with streamlined knowledge entry management and safety throughout storage and compute platforms utilizing Amazon S3 Entry Grants, a brand new Amazon S3 entry management function that allows clients to handle knowledge permissions at scale for person identities managed by company directories.

“Immuta helps simplify knowledge entry and safety for knowledge saved in Amazon S3 so customers can extra safely leverage that knowledge for his or her analytics and AI initiatives. This, paired with Immuta’s ‘write as soon as, apply all over the place’ coverage strategy, helps clients democratize and improve knowledge utilization whereas nonetheless adhering to international laws,” CTO Steve Touw mentioned in a press launch.

Amazon S3 shops greater than 350 trillion objects with over 100 million requests per second to course of a mess of workloads together with synthetic intelligence and knowledge analytics. The lately added AWS Entry Grants function maps identities in directories corresponding to Lively Listing, or AWS Identification and Entry Administration (IAM) Principals, to datasets in S3, serving to to handle knowledge permissions at scale by granting S3 entry to end-users based mostly on their company identification.

Development Micro launches AI assistant

November 27: Development Micro launched Development Companion a generative AI software designed to assist analysts save time on guide danger evaluation. The corporate claims the software explains and contextualizes alerts, triages and recommends personalized response actions, decodes and explains advanced scripts and command strains, helps analysts develop and execute refined risk searching queries, and helps incident responders develop OSQuery queries within the IR and forensics module.

The mixture of adaptive, model-driven risk alerts in Development Imaginative and prescient One and Companion’s gen AI capabilities can speed up incident response occasions by 30%, scale back incident reporting by as much as two hours per report, and drive extra full assault containment, based on Development Micro.

Sumo Logic provides new options to its platform to higher combine with AWS providers

November 27: SaaS analytics platform Sumo Logic has added new options and updates to its platform to increase and speed up troubleshooting and safety throughout AWS environments.

The brand new options embrace Sumo Logic Log Analytics for AWS, which “delivers a curated view and a single pane of glass for monitoring and troubleshooting AWS providers simply and successfully,” the corporate mentioned in a press launch. “The zero-configuration resolution mechanically collects logs and metrics knowledge from 12 core AWS providers together with EC2, Lambda, ECS, RDS, DynamoDB, API GW, and Load Balancers, in a single single step.”

Sumo has additionally added Cloud Infrastructure Safety for AWS, designed to offer perception into lively threats, non-compliant safety controls, and suspicious exercise throughout advanced AWS environments.

The corporate mentioned it has added a number of new options to its synthetic intelligence and machine language fashions:

  • AI-Pushed Alerting makes use of superior anomaly detection, machine studying, and clever playbooks to scale back the noise of day by day alerts and false alarms by highlighting probably the most essential points that require rapid consideration.
  • World Intelligence for AWS CloudTrail DevOps offers perception into AWS efficiency and configuration.
  • World Intelligence for AWS CloudTrail SecOps permits the detection of probably malicious configuration adjustments in AWS accounts by utilizing a machine-learning mannequin to check CloudTrail occasions in opposition to a cohort of AWS clients.

November 27: Information safety agency Fortanix has launched the Key perception as an included functionality in its Fortanix Information Safety Supervisor platform. Key perception is designed to find, assess, and remediate danger and compliance gaps throughout hybrid multi-cloud environments.

Key Perception offers consolidated insights and management of all cryptographic keys to guard essential knowledge providers, the corporate mentioned in a press launch. “Safety, cloud and developer groups can collaborate to evaluate danger posture and remediate compliance gaps according to insurance policies, regulatory mandates, or {industry} requirements (NIST, GDPR, PCI, and so forth.),” Fortanix mentioned.

Wiz brings native AI safety capabilities to its CNAPP

November 16: CNAPP vendor Wiz has launched Wiz for AI Safety, which provides native AI safety capabilities to its cloud-native software safety platform. It has 4 fundamental parts: AI Safety Posture Administration (AI-SPM), an AI safety dashboard, and AI extensions for Wiz’s Information Safety Posture Administration (DSPM) and Assault Path Evaluation capabilities.

AI-SPM is designed to mitigate the chance of shadow AI by offering visibility into all assets and expertise in a company’s AI pipeline. The corporate claims it will possibly detect AI providers throughout cloud providers, SDKs, and AI applied sciences corresponding to AWS SageMaker, GCP Vertex AI, and Azure Cognitive Analysis.

By extending DSPM to AI, Wiz goals to establish and defend AI coaching knowledge within the cloud by offering out-of-the-box controls. Assault paths that danger knowledge leakage or poisoning can then be eliminated.

Assault Path Evaluation can now assess AI pipeline danger throughout vulnerabilities, identities, knowledge, misconfigurations, and extra. These dangers can then be correlated on the Wiz Safety Graph and potential assault paths will be eliminated.

Wiz’s new AI safety dashboard is meant to assist AI builders perceive their AI safety posture. It offers a prioritized listing of dangers in addition to an AI stock and recognized AI SDK vulnerabilities.

IONIX provides publicity administration options to its assault floor administration platform

November 16: IONIX has introduced the launch of Menace Publicity Radar, which the corporate calls the primary risk publicity administration functionality. IONIX will combine the brand new expertise with its assault floor administration (ASM) platform. IONIX claims that Menace Publicity Radar offers a unified view of publicity to threats throughout the enterprise together with cloud, on-premises, SaaS, and third-party programs.

The brand new resolution consolidates safety findings right into a single view with two choices: a radar-like visualization and a abstract desk from which customers can drill down for extra rationalization or directions for mitigating the uncovered property. Information is color-coded to focus on pressing objects needing consideration.

Residing Safety broadcasts Human Threat Operations Heart

November 15: Residing Safety has introduced the Human Risk Operations Center (HROC), a mix of the safety operations middle (SOC) safety consciousness and coaching, and governance, danger, and compliance (GRC) groups. HROC is powered by the corporate’s Unify platform and aggregates and correlates worker behaviors utilizing knowledge from a company’s present safety instruments.

The corporate claims it affords one pane of glass with real-time visibility into an organization’s riskiest individuals, departments, and packages. This helps SOC and GRC groups plan subsequent actions and measures the influence of enhancing insurance policies and behaviors. It helps API integrations for a number of the hottest safety instruments together with CrowdStrike, Microsoft, Proofpoint, and Zscaler.

HROC is on the market now and will be deployed in present Safety Operations Facilities or as a standalone providing worldwide, and it’s priced based mostly on the scale of the group.

SecureAuth broadcasts new launch of Arculix entry administration and authentication platform

November 15: SecureAuth has launched a new version of its Arculix entry administration and authentication platform. The brand new launch consists of enhancements to its Orchestration Engine and improved integration with some Citrix functions and Microsoft Entra ID (previously Azure). Orchestration Engine enhancements embrace a no-code, drag-and-drop atmosphere to extra simply combine and deploy identification providers. Directors can customise the end-user identification lifecycle together with registration, verification, authentication, and post-authorization. Orchestration Engine is on the market to clients who use the premium model of Arculix, which is offered on a per-user/month-to-month lively person foundation.

By integrating with Citrix by means of its System Belief resolution, Arculix can present what SecureAuth guarantees to be a “frictionless login expertise.” Arculix can now authenticate customers immediately in opposition to Microsoft Entra ID, permitting for pass-through authentication.

Sophos provides three new risk detection and response options

November 14: Cybersecurity-as-a-service vendor Sophos has announced three new solutions and capabilities designed to guard in opposition to lively threats. Sophos Firewall v20 software program with Lively Menace Response will establish, cease, and block assaults with out the necessity to add firewall guidelines, based on the corporate. The brand new model additionally integrates with Sophos’s Zero-Belief Community Entry (ZTNA) gateway, which permits safe distant entry to functions behind the firewall. The corporate has additionally enhanced the community scalability of Sophos Firewall to help distributed environments, and it has improved ease-of-use administration.

Sophos Prolonged Detection and Response (XDR) and Managed Detection and Response (MDR) clients now have entry to Sophos Community Detection and Response (NDR) with XDR. Sophos NDR scans community exercise for probably malicious visitors patterns.

Lastly, Sophos has enhanced its XDR resolution with extra third-party integrations to attach safety knowledge throughout a number of sources for quicker detection and response, based on the corporate. Safety operations and analyst workflow and case administration options have additionally been improved to higher filter alerts and supply visibility from a single console.

OneSpan provides passwordless authentication to its DigiPass Authenticator line

November 14: Digital agreements safety firm OneSpan has introduced an enhancement to its Digipass Authenticators line. DIGIPASS FX1 BIO permits passwordless authentication through a bodily passkey and fingerprint scan. The corporate claims this mixture of biometric authentication and public-key cryptography will assist corporations meet compliance necessities, scale back phishing and different social engineering assaults, and enhance the person expertise. DIGIPASS FX1 BIO is predicated on the FIDO normal.

Stream Safety broadcasts Cloud Twin cloudsecops platform

November 14: Stream Safety (previously Lightlytics) has introduced three new features for its Cloud Twin engine, a cloud safety operations (cloudsecops) platform that may assist detect and examine threats and exposures of their cloud environments. The corporate claims it will possibly now map cloud dependencies in real-time fairly than periodically, permitting safety and operations groups to higher cooperate to handle safety gaps.

The brand new options, which might be mechanically out there to present clients, are:

  • Azure integration: Cloud Twin now helps Microsoft Azure, which Stream Safety claims permits it to mannequin all of the doable paths and visitors between totally different cloud platforms.
  • Vulnerability correlation: The platform may help safety groups prioritize efforts by correlating vulnerabilities with their exploitability stage.
  • Menace anomaly detection: Cloud Twin now has risk anomaly detection capabilities to establish malicious conduct and unauthorized entry.

Kasada launches KasadaIQ assault prediction providers

November 14: Menace detection and administration agency Kasada has launched a brand new assault prediction platform designed to counter bot fraud. The KasadaIQ suite debuted with its first service, KasadaIQ for Fraud, with plans so as to add extra capabilities sooner or later.

KasadaIQ for Fraud is designed to offer companies with perception into how bots goal digital channels and buyer knowledge by providing visibility into non-traditional knowledge sources and adversary communities by means of the “functionality to detect assaults earlier than they occur and ensure threats that will in any other case go undetected,” the corporate mentioned.

Core features of KasadaIQ for Fraud embrace:

Unconventional sourcing: Kasada displays exercise inside non-traditional sources — together with resale marketplaces, fraud teams, proxy suppliers, account era teams, and internet hosting suppliers.

Early warnings: Kasada’s analysts first establish and vet present and rising threats inside its knowledge system, then ship out advance alerts. 

Bot acquisition and evaluation: Kasada secretly purchases bots in circulation and extensively analyzes how they work.

Stolen credential evaluation: Kasada purchases and evaluates stolen credential units from legal marketplaces to assist the client treatment safety gaps and on-line fraud.

Devoted analyst hours: Clients obtain a set quantity of analyst hours for Kasada to research what’s most related to their wants, corresponding to intel on fraud teams or reverse-engineering assaults.

Skilled providers: Kasada will scope customized necessities and supply skilled steerage on the right way to finest obtain the specified outcomes.

Cycode debuts ConnectorX with software safety posture administration functionality

November 14: Utility safety posture administration (ASPM) supplier Cycode has launched its click-and-consume third-party ASPM connector platform ConnectorX and introduced vital enhancements to its danger intelligence graph (RIG) for risk-based prioritization. The platform goals to foster improved collaboration between safety and growth groups. It consists of greater than 40 software program growth lifecycle integrations, together with the introduction of help for Wiz and Black Duck.

The Cycode platform offers corporations with the selection to make use of its native ASPM instruments or maximize investments of their present AppSec instruments. Corporations can plug in any AppSec resolution and “inside minutes,” acquire correct, real-time visibility into their safety posture, based on the corporate.

DirectDefense ThreatAdvisor 3.0 goals to streamline safety operations with SOAR expertise

November 14: Info safety providers firm DirectDefense has launched ThreatAdvisor 3.0, a significant replace to its proprietary safety orchestration, automation, and response (SOAR) platform. ThreatAdvisor 3.0 is designed to enhance the pace, effectivity, and accuracy of DirectDefense’s Safety Operations Heart (SOC), the corporate mentioned in a press launch.

The platform affords personalized steady safety monitoring and administration, automates guide processes, and consists of an intensive information base for compliance, safety occasions and mitigation strategies. ThreatAdvisor 3.0 integrates with different options to offer a single interface for risk administration with extra knowledge and higher context, the corporate claims. The platform collects and processes vulnerability and asset knowledge from a number of sources and compiles them right into a holistic view of a company’s safety posture, supporting penetration testing, operational expertise (OT) and industrial management programs (ICS) assessments, vulnerability administration, managed detection and response (MDR), compliance assessments, and enterprise danger administration.

Lacework Code Safety expands protection to full software lifecycle 

November 14: Cloud safety agency Lacework has added the Code Security product to its infrastructure-as-code (IaC) suite to unify code and cloud safety with the goal of permitting enterprises to innovate and ship safe cloud-native functions with elevated pace.

Lacework Code Safety introduces two types of static program evaluation — software program composition evaluation (SCA) focused at third-party code in clients’ repositories, and static software safety testing (SAST) focusing on first-party code. The Lacework platform now encompasses code as it’s written, infrastructure as code, containers, identification and entitlement administration, and runtime throughout clouds.

Lacework added that clients may have entry to always-up-to-date software program payments of supplies (SBOMs) for each software and continuous visibility into their software program provide chain, in addition to an understanding of open-source license danger.

Palo Alto Networks updates Cortex XSIAM

November 13: Palo Alto Networks has announced Cortex XSIAM 2.0, an up to date model of its present product that now has a command middle, MITRE ATT&CK Protection Dashboard and produce your personal ML (BYOML) amongst different updates.

The brand new options are:

  • XSIAM Command Heart: With a extra user-friendly design, XSIAM Command Heart affords a complete overview of SOC operations, together with visibility into all knowledge sources being consumed by XSIAM, safety alerts and incident info, such because the variety of resolved or open safety incidents.
  • MITRE ATT&CK Protection Dashboard: That is designed to permit mapping protection on to MITRE ATT&CK, offering detailed visibility of detection and prevention protection throughout techniques and strategies into the MITRE ATT&CK framework.
  • Convey your personal ML: For organizations that need to construct their very own customized ML mannequin, XSIAM ingests full safety knowledge throughout lots of of supported sources to allow higher out-of-the-box AI/ML analytics. SOCs can use this to create and customise ML fashions in addition to combine their very own fashions.
  • Contextual in-product assist assistant: Entry to product assist and documentation with out the necessity to navigate out of the product.
  • New safety safety: Enhance detection and safety protection capabilities with new modules for early detection of threats focusing on macOS ransomware, Kubernetes(K8s) and grasp boot information (MBRs).
  • Community detection (NDR) protection: Develop the community protection of the endpoints with over 50 new detectors masking generic and particular protocol-based risk detection.
  • Superior Native Evaluation for macOS and Linux: Supplies enhanced protection for native evaluation of macOS and Linux file programs, leveraging ML fashions to offer correct and adaptive responses to evolving threats.
  • Free textual content search: A simplified search that allows analysts to question the whole safety knowledge set, with out the necessity to craft particular XQL queries.
  • New assault floor administration (ASM) insurance policies: New ASM insurance policies added to the prevailing library of over 700 insurance policies.