April 15, 2024

Table of Contents

IndyKite appears to enhance knowledge trustworthiness with an identity-centric method

February 21: IndyKite has introduced a brand new model of its identity-powered AI enterprise data platform. The corporate claims its identity-centric method improves trustworthiness of key knowledge. An AI-driven danger rating guides use of the information, and the platform additionally supplies supply and verification knowledge for every knowledge level. Actual-time analytics and perception discovery options help with resolution making and menace detection and response, based on IndyKite.

Metomic provides “human firewall” options to scale knowledge safety workflows

February 20: Metomic has launched new “human firewall” options to its knowledge safety platform. The options apply to SaaS purposes similar to Google, Slack, and Microsoft Groups and are designed to assist safety and compliance groups scale knowledge safety workflows for SaaS purposes by involving workers within the danger remediation course of. Sharing this process with workers will enable for the next quantity of potential violations to be reviewed and addresses, based on Metomic. The corporate additionally claims that the human firewall options will enable workers to report false positives to safety groups or present justification for sharing enterprise knowledge. The human firewall options are actually accessible to all Metomic prospects.

Vectra AI launches 24/7 managed prolonged detection and response service

February 15: Vectra AI has launched Vectra MXDR, a worldwide managed prolonged detection and response service. Out there 24/7, Vectra AI is designed to defend in opposition to assaults in hybrid and multi-cloud environments. It supplies assault floor visibility throughout id, public cloud, SaaS, knowledge middle, and cloud networks and endpoints by integrating with EDR distributors, based on Vectra AI. Options embody AI-driven assault sign intelligence, distant response and remediation, managed safety coverage configuration, and end-to-end detection and response protection. Vectra MXDR is offered to present prospects.

BigID provides entry governance controls

February 15: BigID has introduced new access governance controls for its cloud and hybrid knowledge safety and compliance platform. The brand new options enable prospects to watch and handle entry throughout the cloud and on-premises environments. The corporate claims the brand new capabilities will enable organizations to routinely determine. examine, and remediate entry rights violations throughout structured and unstructured knowledge. It will scale back the assault floor, mitigate insider danger, and allow a zero-trust method, based on BigID.

Infoblox brings AI-powered safety operations options to its BloxOne platform

February 15: Cloud networking and safety providers agency Infoblox has enhanced its BloxOne Menace Protection DNS detection and response answer with the AI-powered SOC Insights safety operations answer. SOC Insights is designed to assist safety analysts higher determine and examine safety occasions that matter and scale back response time. The corporate claims that SOC Insights consolidates particular person alerts into insights that present entry to machine, occasion, attacker infrastructure particulars, and Infoblox’s DNS intelligence knowledge. SOC Insights is offered now.

Eureka Safety brings file-sharing product capabilities to its DSPM answer

February 15: Information safety posture administration vendor Eureka Software program has introduced that its DSPM answer has expanded to all main cloud providers with the flexibility to handle file-sharing purposes similar to Workplace 365, Google Drive, Field, and Dropbox. This permits the DSPM answer to offer visibility and insights into how customers share, entry, and us knowledge throughout SaaS, IaaS, and PaaS options, the corporate claims.

Recorded Future releases generative AI assistant for menace intelligence

February 14: Intelligence firm Recorded Future has launched Recorded Future AI from beta. It’s designed to assist human analysts in figuring out international threats. Recorded Future AI is constructed on the corporate’s Intelligence Graph knowledge mannequin, and it’s able to monitoring and placing into context threats throughout cyber, bodily, and affect operations domains. Recorded Future claims its AI assistant can assist enterprises and governments outline massive, advanced menace surfaces in each the bodily and cyber worlds.

ReversingLabs Spectra Guarantee makes use of AI to detect software program provide chain threats

February 13: Software program and file safety vendor ReversingLabs has launched Spectra Assure, which makes use of AI with advanced binary evaluation to detect malicious code and malware embedded in software program earlier than it’s deployed and with out the necessity to have its supply code. A construct examination within the new instrument identifies tampering and malware earlier than deploying software program throughout first-, second-, and third-party elements, based on the corporate. Spectra Guarantee can report points in massive, advanced software program packages in minutes or hours, ReversingLabs claims.

February 13: Seal Safety has introduced its presence with an LLM-powered open-source vulnerability remediation solution. It supplies entry to safety patches throughout 5 languages, and the corporate claims it is ready to remediate 95% of vital and high-severity vulnerabilities recognized within the final 5 years. The instrument is designed to automate and scale vulnerability remediation with centralized management over the vulnerability patching course of.

Legit Safety add AI discovery to its ASPM platform

February 13: Legit Safety has introduced the addition of AI-powered discovery capabilities to its software safety posture administration (ASPM) platform. The brand new function is designed to detect the place software program builders use AI code. The corporate claims this provides safety leaders and software safety groups visibility into AI-related dangers from the infrastructure to software layers throughout the appliance improvement pipeline in order that they know the place to place safety controls. The brand new AI capabilities embody safety coverage enforcement, real-time notifications of generative AI code, and alerts on LLM dangers.

Cyberhaven goals to cease insider threats with Linea AI

February 9: Cyberhaven has launched Linea AI, which makes use of the corporate’s proprietary massive lineage mannequin (LLiM) to detect insider threats. That LLiM analyzes workflows and predicts the following probably motion or conduct to happen, flagging deviations. Cyberhaven claims the LLiM can take a look at your complete workflow throughout time for each knowledge merchandise throughout the enterprise. Options embody danger detection and prioritization, incident abstract, good remediation that recommends responses, and guided prevention for real-time intervention.

Qualys TotalCloud 2.0 provides SaaS safety, provide chain danger mitigation, and extra

February 8: The Qualys TotalCloud 2.0 model of its AI-based CNAPP platform now presents a single view of cloud danger and prolonged safety to SaaS purposes. TruRisk Insights supplies a single prioritized view of cloud dangers, which Qualys claims will streamline the identification of high-risk belongings. TotalCloud 2.0 has additionally integrated SaaS safety posture administration with the CNAPP platform. Different new options embody provide chain danger administration the place TotalCloud 2.0 scans open-source software program pre- and post-deployment, and operationalized danger discount, which the corporate claims removes siloes between IT and safety with ITSM integrations. TotalCloud 2.0 is offered now.

SailPoint proclaims two merchandise to assist construct id applications

February 8: SailPoint Applied sciences has launched two choices to its id administration portfolio. The SailPoint Identity Security Cloud Standard suite is focused to firms simply beginning id safety initiatives. It has a set of core capabilities that centralizes identity-related knowledge, permitting organizations to manipulate entry for all identities throughout the enterprise in a scalable manner, based on Sailpoint. The brand new Customer Success Portfolio presents three tiers of coaching and assist, together with configuration assist, adoption workshops, and program oversight, evaluation, and steering.

AppViewX, Fortanix companion to ship safe digital id administration and code signing

February 7: Machine id administration agency AppViewX and knowledge safety firm Fortanix are combining their options to ship cloud-based safe digital id administration with code signing in a single bundle. AppViewX’s Digital Belief Platform and Fortanix’s Information Safety Supervisor (DSM) collectively handle two safety use instances: the administration of machine identities throughout hybrid multi-cloud environments and simplified safe code signing for improved software program provide chain safety, based on a joint press launch. The mixed providing is offered by means of both vendor, joint channel companions, or the AWS Market.

F5 proclaims new AI capabilities to guard AI-powered purposes

February 7: Multi-cloud safety agency F5 has enhanced its Distributed Cloud Services solution with API code testing and telemetry evaluation. The corporate additionally introduced that it’s implementing AI throughout its complete product portfolio. The corporate claims these enhancements present “AI-ready” API and software safety. The AI enhancements are from know-how F5 just lately acquired from Wib, they usually allow vulnerability detection and observability in the course of the software improvement course of and earlier than manufacturing. F5 claims it will possibly now supply API uncover, testing, posture administration, and runtime safety in a single platform.

Akamai’s Content material Protector goals to cease scraping assaults

February 6: Akamai Applied sciences has introduced the supply of its Content Protector instrument, which the corporate claims stops malicious scraper bots with out blocking reputable site visitors. It is ready to detect and mitigate these malicious scrapers. Featuresinclude protocol fingering that checks how guests hook up with your web site to find out if they’re reputable, analysis of JavaScript code, the flexibility to differentiate between human and machine conduct, and danger classification for site visitors primarily based on anomalies discovered.

Teleport Coverage centralizes coverage administration for infrastructure entry

February 6: Teleport, which focuses on infrastructure entry, has launched Teleport Policy, a instrument designed to unify entry management and coverage throughout a corporation’s infrastructure. The brand new product supplies visibility into how engineers, customers, and workloads entry infrastructure and knowledge. The corporate claims this permits their prospects to determine points similar to inappropriate privileges and take away them. One other function is meant to hurry investigations and responses through a unified Entry Graph view of entry relationships. Teleport Coverage is an extension of the corporate’s Teleport Entry platform.

Metomic launches Metomic for ChatGPT

February 5: Information safety agency Metomic has launched Metomic for ChatGPT, which the corporate claims will assist defend delicate knowledge whereas utilizing OpenAI’s generative AI instrument. The brand new answer supplies visibility to what knowledge is uploaded to ChatGPT. Metomic for ChatGPT is a browser plug-in, permitting it to determine when an worker logs into the ChatGPT web site. It then scans the information going into the generative AI platform in actual time. It then alerts the safety workforce if delicate knowledge is being moved.

February 5: Crucial infrastructure safety firm OPSWAT has proclaims enhancements to its line of MetaDefender Kiosk products. Described as “peripheral media scanning stations,” MetaDefender Kiosk merchandise are units that scans detachable media for threats. OPSWAT has added a Kiosk Mini kind issue to the road that’s supposed to be extra accessible, moveable, and versatile. It might probably additionally assist tabletop and rugged environments. MetaDefender Kiosk can be now built-in with OPSWAT’s MetaDefender Sandbox and Media Firewall merchandise, enabling adaptive menace evaluation for zero-day menace detection. Lastly, MetaDefender Kiosk Stand helps VESA-mountable Kiosks and units. The three-bay stand helps a number of detachable media varieties and features a exhausting disk drive bay.

Varonis introduces managed detection and response for the information degree

February 5: Varonis Methods’ new Managed Data Detection and Response (MDDR) service goals to determine and cease threats on the knowledge degree in addition to endpoints. Options of the 24/7 monitoring service embody an AI evaluation engine that automates investigations, a 30-minute response window for ransomware and 120-minute response for different alerts, and a deployment time measured in hours, based on the corporate. MDDR is delivered on prime of Varonis’s Information Safety Platform and is offered now.

Secureworks Menace Rating makes use of AI to prioritize alerts

February 1: Secureworks has launched its AI-powered Threat Score, which is meant to assist safety analysts prioritize safety alerts. The instrument identifies which alerts are most probably to have a unfavorable influence primarily based on the group’s operations. The corporate claims that by filtering out noise within the alerts, Menace Rating can scale back safety analyst workloads by about 50%. Menace Rating is offered as a part of Secureworks Taegis XDR.

OX goals to get rid of handbook software safety practices with new ASPM platform

January 31: OX Safety’s new software safety posture administration answer, Active ASPM Platform, unifies software safety practices by offering visibility, traceability, prioritization, and automatic no-code workflow-driven response, which the corporate refers to as an “energetic method” to AppSec. OX claims this method ends in a steady and extra correct concentrating on of vital threats, which reduces alert fatigue. The answer additionally supplies assault path evaluation, energetic context evaluation, and pipeline invoice of supplies.

Vade makes use of AI to boost spear-phishing detection

January 31: Menace detection and response vendor Vade has improved its spear-phishing detection engine with generative AI. The corporate claims the brand new know-how will enable its engine to higher defend in opposition to superior threats, together with these created by AI, and supply a larger diploma of confidence of detection. The spear-phishing engine has been educated on conventional and AI-created spear-phishing electronic mail messages. The brand new spear-phishing engine is now applied in its Vade for M365 electronic mail safety suite.

SentinelOne enhances menace looking capabilities of WatchTower and WatchTower Professional

January 30: Sentinel one has introduced the overall availability of recent machine-learning and superior behavioral threat-hunting capabilities for its WatchTower and WatchTower Professional managed menace looking providers. The brand new capabilities embody anomalous and suspicious conduct detection, expanded protection in opposition to identified and rising threats, 24/7 real-time menace looking, and entry to WatchTower’s in-house menace intelligence library. As earlier than, the brand new capabilities are backed by human consultants.

New connector offers Varonis wider database assist

January 30: Varonis has enhanced its knowledge safety posture administration capabilities with the addition of a universal database connector, which permits its platform to combine with linked databases hosted on-premises or within the cloud. The corporate claims this integration will enable its prospects to make use of Varonis’s library of classifiers and scalable structure to centralize knowledge classification. The Varonis platform works with structured, semi-structured, and unstructured knowledge.

Keyfactor presents PKI integration with Quantinuum Quantum Origin

January 30: Identification safety supplier Keyfactor has partnered with quantum computing firm Quantinuum to supply a public key encryption (PKI) platform that integrates with Quantinuum’s Quantum Origin quantum entropy answer. With this integration, Keyfactor EJBCA can now present stronger root of belief to offer certificates, based on Keyfactor, and supplies safety in opposition to potential misuse of quantum computing know-how.

Deep Intuition Prevention for Functions 3.0 enhances file add, software storage protections

January 25: Deep Intuition has introduced the three.0 model of its Deep Instinct Prevention for Applications (DPA) AI-based deep-learning framework. DPA 3.0, agentless on-demand anti-malware answer, now has improved file add protections and software storage safety. The brand new deep-learning capabilities use neural networks to keep away from shortcomings of different options similar to insufficient scanning, challenges offered by adversarial AI, or incapacity to cease unknown malware, based on the corporate. Not like different instruments that require frequent cloud connections to remain updated on menace intelligence, DPA 3.0 requires updates solely a few times a yr. This partly makes it appropriate to be used in air-gapped environments.

Black Kite introduces month-to-month ransomware dashboard

January 24: Black Kite, a supplier of third-party cyber danger intelligence, has launch a monthly ransomware dashboard that reveals graphs, knowledge, developments, and assault patterns. The corporate claims it analyzes the highest ransomware indicators to determine frequent vulnerabilities that ransomware menace actors exploit. Black Kite has additionally developed its Ransomware Susceptibility Index (RSI) utilizing knowledge and machine studying to offer an summary of industry-specific dangers, based on the corporate.

Zscaler launches Zero Belief SASE constructed with AI

January 23: Cloud safety supplier Zscaler has introduced its Zero Trust SASE. Construct with Zscaler’s Zero Belief AI, the brand new SASE is designed to scale back the price and complexity of implementing zero-trust safety throughout customers, units, and workloads, in accordance the the corporate. Zscaler additionally introduced that its Zero Belief SD-WAN is now typically accessible together with new plug-and-play home equipment that the corporate claims will assist its prospects modernize safe connectivity for its numerous services.

Mitiga boosts incident response with Kroll partnership

January 23: Cloud and SaaS incident response agency Mitiga has partnered with Kroll, including that firm’s incident response and litigation providers to the Mitiga Cloud and Incident Response Automation (CIRA) answer. The corporate claims that the combination of Kroll’s providers will enable its prospects to higher adjust to new US Securities and Trade Fee (SEC) rules for incident reporting. Mitiga may even supply its prospects different Kroll providers at a reduction, together with crimson workforce workout routines, penetration testing, and digital CISO.

PQC Starter Package from Thales and Quantinuum to assist put together for post-quantum cryptography

January 22: In collaboration with Quantinuum, Thales has launched the PQC Starter Kit, which is designed to assist organizations put together for post-quantum cryptography (PQC) challenges. The package permits them to check quantum-hardened encryption keys and higher perceive the potential influence of PQC on the safety of their infrastructure, based on Thales. PQC Starter Package makes use of present NIST proposed algorithms that organizations can use to check safety use instances similar to PKI, code-signing, TLS, and web of issues (IoT). The primary iteration of the package incorporates Luna HSMs and Quantinuum’s quantum random quantity generator know-how, which permits organizations to find out whether or not their keys are securely generated and saved whereas utilizing PQC algorithms.

ArmorPoint proclaims cybersecurity program administration options

January 20: ArmorPoint has expanded its cybersecurity providers with a suite of cybersecurity program management solutions, known as Managed Threat and Managed Technique. The corporate mentioned its aim was to offer a unified method to cybersecurity by integrating danger administration, strategic planning, and real-time menace detection. This permits organizations to take a “proactive and adaptive method to cybersecurity,” based on the corporate.

VulnCheck IP Intelligence tracks attacker infrastructure and weak IPs

January 18: Exploit intelligence firm VulnCheck has launched its IP Intelligence function set that tracks attacker infrastructure and weak Web Protocol (IP) addresses in actual time. The brand new performance cross-references internet-connected datasets in opposition to VulnCheck’s personal exploit and vulnerability intelligence info, offering perception round these units and attackers’ command-and-control infrastructure, based on the corporate. IP Intelligence supplies a downloadable and searchable dataset to determine weak internet-connected units. It additionally generates lists of IP addresses to be used in block lists.

Fortinet launches Wi-Fi 7-enabled safe networking answer

January 17: Community options supplier Fortinet has introduced what it claims to be the first secure networking solution integrated with Wi-Fi 7. Forti-AP 441K is a Wi-Fi 7 entry level, and FortiSwitch T1024 helps Wi-Fi 7 bandwidth necessities with 10 gigabit Ethernet entry and 90W Energy over Ethernet (PoE) know-how. Each are a part of the Fortinet Safe Networking answer and combine with AIOps and FortiGuard AI-Powered Safety Providers. Wi-Fi 7 is the newest wi-fi know-how designed to assist wi-fi units working data-heavy purposes.

Salt Safety provides API posture governance to its API Safety Platform

January 17: API safety agency Salt Safety has enhanced its API Protection Platform, together with the addition of an API posture governance engine, an API filtering and querying capabilities, and improved behavioral menace response capabilities. The API posture governance engine helps organizations to create company requirements for API posture and assess compliance with these requirements, {industry} greatest practices, and regulatory necessities. The corporate claims it is going to maintain API lifecycle stakeholders in sync and guarantee safety requirements are adopted all through the API lifecycle. New API filtering and querying capabilities enable for higher API asset discovery and administration whereas offering particulars about their function, utilization patterns, and dangers. Enhanced behavioral response will enable SecOps groups to higher prioritize, triage, and analyze API-related safety occasions, based on Salt. Different enhancements embody higher sharing of API intelligence and enterprise onboarding and operationalization enhancements.

Dwelling Safety proclaims Unify Energy Insights for danger operations

January 17: Human danger administration agency Dwelling Safety has launched Unify Power Insights, which is meant to offer visibility into which workers are most weak to dangers similar to phishing, account compromise, malware, or knowledge loss. It does so by gathering intelligence knowledge from a number of sources similar to id administration and safety instruments. In keeping with Dwelling Safety, Unify Energy Insights permits safety groups to watch grouping of person conduct and detect spikes in dangerous actions. The answer additionally supplies ideas to mitigate these dangers.

Savvy launches Identification-First Safety to handle IAM permissions

January 16: SaaS safety platform supplier Savvy has introduced Identity-First Security, which is designed to find dangers related to mixtures of id entry administration (IAM) permissions, person conduct, and enterprise context. In keeping with Savvy, Identification-First Safety permits organizations to determine dangers similar to rogue directors, compromised accounts, shadow identities, shared accounts, incomplete offboarding, and extra. The answer additionally supplies automated playbooks that set “safety guardrails” that encourage customers to mitigate dangers earlier than they grow to be safety incidents, the corporate claims.

GTT Communications brings Fortinet SASE to its MSSP providing

January 16: Managed community and safety service supplier GTT Communications now offers secure access service edge (SASE) capabilities powered by Fortinet. This contains Fortinet’s zero belief community entry (ZTNA), firewall-as-a-service, cloud entry safe dealer (CASB), and safe net gateway (SWG) options, all working alongside GTT’s Managed SD-WAN providing. The Fortinet options are deployed inside GTT’s community infrastructure and all site visitors is maintained on the corporate’s international IP spine. GTT claims this may scale back latency, jitter, and packet loss in addition to enhance availability.

Wiz AI-SPM now accessible for the OpenAI platform

January 11: CNAPP supplier Wiz has introduced an OpenAI SaaS connector that extends assist for its AI-SPM AI safety instrument to the OpenAI API platform. The instrument supplies OpenAI builders with visibility into their OpenAI pipelines and permits them to higher mitigate dangers throughout the cloud and OpenAI through the Wiz Safety Graph, the corporate claims. Safety groups can now have visibility into new coaching jobs that AI builders create in a single view. AI-SPM additionally permits for assault path evaluation to detect dangers. The Wiz OpenAI SaaS connector for AI-SPM is offered now.

Dasera provides Microsoft 365 to its knowledge safety posture administration platform

January 10: Information safety posture administration (DSPM) agency Dasera has expanded its platform to incorporate protections for Microsoft 365. This permits larger visibility of knowledge throughout OneDrive, SharePoint, and Groups, based on the corporate, permitting organizations to higher determine and handle delicate knowledge. With its DSPM platform, Dasera claims the enhancement will assist optimize privateness processes utilizing its coverage engine in addition to assess danger from information shared in Microsoft 365 apps.

Cohesity Cloud Providers now helps Microsoft Azure workloads

January 9: Cohesity Cloud Providers (CCS) has added assist for Microsoft Azure workloads, particularly the backup and restoration of Azure digital machines (VMs) and Azure SQL databases. The brand new Azure VM capabilities inside CCS embody backup and restoration of a complete VM in place or to an alternate location, area, or useful resource group, and assist for Azure VM backup utilizing personal endpoints with a shared entry signature. CCS Azure SQL database capabilities embody full backups on a customizable schedule, automated backups, portability of SQL databases to and from the cloud, and immutable backups saved exterior the tenant.

TitanHQ proclaims PhishTitan anti-phishing answer

January 9: Cloud-based electronic mail safety options supplier TitanHQ has launched PhishTitan Built-in Cloud E-mail Safety (ICES). The answer works inside Microsoft 365 to scan inner and exterior electronic mail messages. It has native and API-based integration with Trade On-line Safety (EOP) and Microsoft Defender. The corporate claims that PhishTitan ICES will block and remediate enterprise electronic mail compromise, account takeover, VIP impersonation, and zero-day threats. The product is offered now.

SpecterOps provides Lively Listing Certificates Providers safety to BloodHound Enterprise

January 9: SpecterOps has up to date its BloodHound Enterprise (BHE) platform with new attack paths for Microsoft Active Directory Certificate Services (ADCS). The BHE platform is designed to take away id assault paths in Microsoft Lively Listing and Entra/Azure AD. The brand new ADCS assault paths deal with frequent misconfigurations that enable attackers to steal certificates, obtain account persistence, and acquire management over Lively Listing domains, based on the corporate.

LogRhythm releases updates to LogRhythm SIEM and LogRhythm Axon

January 4, 2024: LogRhythm has up to date its self-hosted LogRhythm SIEM and cloud-native LogRhythm SaaS SIEM platforms. Enhancements to the previous embody extra assist for onboarding new Beats and Open Collectors from a single location, simplified Home windows occasion log onboarding, improved analyst workflows whereas reviewing alarm notifications, and an expanded library of supported log sources. Enhancements to LogRhythm Axon embody a brand new interactive single investigation display that gives contextual case insights with drill-down of log sources and safety analytics; an improved assisted search function that means latest searches, search lists, and search queries; a brand new collector for Microsoft Workplace 365 Administration API, and extra environment friendly Axon Agent administration for on-premises knowledge assortment.

Valimail launches Align to fulfill Google and Yahoo electronic mail authentication necessities

January 4, 2024: Valimail, a supplier of DMARC, automated authentication, and anti-phishing options, has launched Valimail Align, which is designed to validate compliance standing for brand spanking new sender authentication necessities from Google and Yahoo. Beginning in February, Gmail and Yahoo bulk electronic mail senders will likely be required to authenticate outgoing mail or danger being blocked. Valimail claims that Align checks for alignment between the SPF and DKIM electronic mail protocols to fulfill the brand new necessities. Valimail’s automation suite can then be used to achieve compliance in a matter of days, based on the corporate.

Mitiga proclaims Investigation Workbench to evaluate cloud and SaaS incidents

December 19: Mitiga has added Investigation Workbench to its line of cloud and SaaS incident response options. The corporate claims its new instrument will present extra readability on all multi-cloud and SaaS actions by means of a single view. Investigation Workbench, a part of Mitiga’s IR2 cloud investigation and response automation (CIRA) platform, is designed to provide safety operation middle groups visibility into chains of occasions throughout their cloud and SaaS surroundings. In keeping with Mitiga, this permits for sooner and less complicated willpower of materiality of a cyber occasion in order that they’ll reply appropriately.

Kasada enhances it bot protection platform

December 19: Bot administration agency Kasada has enhanced its bot defense platform and claims it will possibly now higher defend in opposition to the newest strategies attackers use to evade detection. New options embody randomized and dynamic defenses throughout its structure to make them more durable to bypass, machine language anomaly detection, integrity checks on client-side knowledge assortment, and assault analytics for classification, drill-down, and filtering. The brand new enhancements can be found now to all Kasada prospects.

AI-powered AskOmni bot designed to help with SaaS safety

December 19: SaaS safety posture administration (SSPM) agency AppOmni has launched AskOmni, which it describes as an AI-powered SaaS safety assistant. AskOmni works with the AppOmni SaaS safety platform to permit pure language queries for frequent SaaS safety choices. Its generative AI know-how helps safety directors to extra shortly determine and remediate points, the corporate claims. Different options embody an context-sensitive chat interface and notifications, danger evaluation, real-time menace intelligence, and automatic code technology for difficulty decision. AskOmni is now available as a tech preview and will likely be rolled out in phases throughout 2024

Secure Safety provides module to help in SEC Compliance

December 13: Secure Safety has added a module to its platform to help with attaining compliance with SEC reporting necessities. Secure Safety, a specialist in AI-driven cyber danger administration, mentioned the SAFE Materiality Assessment Module will “allow safety and danger leaders to attain SEC compliance by estimating and monitoring materiality of cyber incidents.”

The corporate mentioned in a press launch that the module relies on a tunable issue evaluation of data danger (FAIR) materiality evaluation mannequin (MAM). “SAFE Materiality Evaluation Module permits organizations to mannequin estimated monetary losses from prime danger situations with FAIR-MAM to cost-effectively goal safety or cyber insurance coverage investments,” mentioned COO Pankaj Goyal. “This permits them to leverage the insights to organize for the possible monetary influence to observe. The SAFE Materiality Evaluation Module is a game-changer for safety and danger leaders.”

Telaeris proclaims RTLS emergency mustering system

December 13: Telaeris, a supplier of handheld options for bodily entry management techniques, has introduced its XPressEntry Real-Time Location Systems (RTLS) Emergency Evacuation Mustering system. Powered by HID’d Bluetooth Low-Power (BLE) beacons and gateways, the brand new product supplies an automated option to account for badged employees and guests in emergency conditions. Strategically positioned BLE beacons maintain observe of badge areas, whereas gateways are positioned at designated emergency meeting areas, so the system is aware of the situation and id of lacking individuals.

Google Cloud proclaims common availability of Duet AI in Safety Operations

December 13: Google Cloud’s Duet AI in Safety Operations is now generally available. Introduced earlier this yr on the RSA Convention, Duet AI in Safety Operations can search by means of massive knowledge units utilizing natural-language queries, routinely generate summaries about case knowledge and alerts, and supply context and proposals for remediation.

Duet AI in Safety Operations is included with Google Cloud’s Safety Operations Enterprise and Enterprise Plus packages. Google Chronicle prospects can have free entry to Duet AI till March 5, 2024.

Notion Level launches safety consciousness coaching program

December 13: Menace prevention supplier Notion Level mentioned it has launched a brand new safety consciousness coaching program for its prospects that will likely be built-in into its Superior E-mail Safety product. This system is meant to assist organizations counter superior social engineering assaults by specializing in worker conduct and tailoring cybersecurity coaching to particular wants, the corporate mentioned in a press release. The coaching program leverage providers from coaching providers supplier DCOYA and presents behavior-centric safety consciousness coaching to counter cyberattacks together with superior social engineering.

“This system leverages machine studying algorithms to seamlessly combine greatest practices from behavioral psychology and advertising strategies, automating coaching that’s tailor-made to the precise wants of every worker,” the corporate mentioned. “This reduces the probability of profitable cyberattacks, knowledge breaches, and different malicious actions.”

AI-powered analytics integrated into Zscaler

December 12: Cloud safety supplier Zscaler has added Enterprise Insights, an AI-driven analytics instrument, to its Enterprise portfolio. Enterprise Insights will allow organizations to curtail SaaS sprawl and optimize workplace utilization to enhance office expertise whereas saving cash, the corporate claims.

The corporate mentioned it has additionally integrated enhancements to the broader portfolio embody new AI-powered improvements inside its Zscaler Risk360 and Zscaler Digital Expertise Monitoring merchandise. The additions have been documented in a company blog.

Qmulos introduces real-time, data-driven compliance automation and auditing updates

December 12: Compliance, safety, and danger administration automation supplier Qmulos has introduced the overall availability of its Q-Compliance V4.4.0 and Q-Audit V3.7.0 platforms. “The most recent releases of each merchandise add seamless workflow and ticketing capabilities to allow customizable processes for organization-specific safety and compliance investigations, escalations, and approvals,” the corporate said in a press release.

Q-Compliance V4.4.0 introduces customizable system authorization workflows designed to offer organizations with streamlined authorization requests and approvals for his or her steady authority to function course of, the corporate mentioned. Q-Audit V3.7.0 contains alerting capabilities with ticketing workflows to offer real-time insights and actionable steps to fortify defenses in opposition to insider threats and different malicious actions. Extra info was made accessible on the company’s blog.

Censys provides threat-hunting tiers and enhancements

December 12: Menace-hunting intelligence platform Censys has added two new product tiers to its search instrument, Censys Search Solo and Censys Search Groups. The additions are a part of a collection of strategic initiatives to boost the safety neighborhood, together with the introduction of threat-hunting boot camps, the Censys Beta Workshop and vital upgrades to product infrastructure, the corporate said in a press release. Every tier is offered month-by-month or on an annual foundation, Censys mentioned.

“Empowering the menace intelligence neighborhood is certainly one of Censys’s greatest priorities, and with these two new product tiers, we will proceed to assist researchers improve their menace looking work, irrespective of the scale of their workforce,” mentioned Censys CEO Brad Brooks.

Descope Nice-Grained Authorization permits granular entry management

December 12: Descope has launched an replace to its authentication and person administration software program as a service platform by combining roles with relationships to create versatile entry management.

With Descope’s SDKs and APIs, Nice-Grained Authorization (FGA) can outline and assign permissions primarily based on relationships between entities, enabling them to arrange authorization techniques that may match the nuances of their enterprise. FGA permits organizations so as to add relationship-based entry management (ReBAC) capabilities to their purposes.

The brand new performance permits organizations to outline a schema itemizing out the forms of entities and the doable relationships that exist inside their app; retailer the schema in order that it may be queried, managed, and up to date as relationships evolve; construct out relationships between particular entities primarily based on the present schema; and add checks throughout the app that may consult with the outlined relationships earlier than making authorization choices.

Nedap launches Entry AtWork SaaS entry management system

December 11: Nedap has launched a software-as-a-service (SaaS) entry management system known as Entry AtWork that the corporate claims will present “firms seeking to change their outdated on-premises techniques with fashionable and easy-to-use software program that gives higher insights with much less effort and smaller funding.”

The brand new system will help small to medium-size enterprises wanting in managing bodily entry throughout a number of websites, Nedap mentioned in a post on its website. It operates on an authorization mannequin that permits directors to handle entry primarily based on hierarchical groups and zones. The answer is GDPR compliant and contains such safety measures as redundant and safe internet hosting of knowledge in licensed datacentres throughout the European Union.

Fortinet provides Gen AI assistant to SIEM, SOAR platforms

December 11: Fortinet has added a generative AI assistant, Fortinet Advisor, to its FortiSIEM safety info and occasion administration answer and to FortiSOAR the safety orchestration, automation, and response providing. In keeping with Fortinet, Advisor is designed to assist SecOps groups examine and remediate threats sooner.

Fortine Advisor options embody decoding safety alerts and producing summaries, helps analysts by accepting pure language queries and returning helpful outcomes, suggests menace remediation plans and helps to generate playbook templates translating processes to actionable plans. The assistant will likely be constantly up to date by Fortinet AI and product specialists with the newest menace info.

Nimbus-T International introduces Nimbus-Key ID & Authentication System

December 11: Nimbus-T International has added its Nimbus-Key ID & Authentication to the corporate’s line of id and authentication merchandise. It’s an enterprise-level passwordless authentication answer that makes use of a dynamically encrypted Nimbus-Key ID. Every person will get their very own international ID, which the system verifies utilizing know-your-customer (KYC), AI, and biometrics strategies.

Qrypt and Los Alamos Nationwide Labs develop quantum random quantity generator

December 7: Qrypt and Los Alamos Nationwide Labs (LANL) have developed Qrypt’s Quantum Random Number Generation (QRNG), which will likely be a part of Qrypt’s cloud-based Quantum Entropy and Quantum Key Technology providers by serving to generate “true” quantum randomness. Qrypt and LANL use photon bunching to advance provable QRNG by meticulously filtering out classical noise, isolating the quantum impact important for figuring out the system’s minimal entropy, based on Qrypt.

Netskope completes roll out of Localization Zones

December 7: Netskope has accomplished the rollout of Localization Zones to its NewEdge safety personal cloud, first launched in February 2023. It supplies a localized expertise for over 220 international locations and territories. The localization zones allow higher digital expertise as if going direct-to-net. It additionally supplies native language and localized content material assist for web sites, in addition to entry to geo-fenced content material and purposes, even when there isn’t a in-country knowledge middle.

Coro 3.0 combines EDR, SASE, and electronic mail safety right into a single platform

December 6: Coro has launched its 3.0 model of its modular cybersecurity platform. Aimed toward midmarket firms, Coro 3.0 has 14 built-in modules together with endpoint detection and response (EDR), safe entry service edge (SASE), electronic mail safety, knowledge governance, next-generation firewall (NGFW), and DNS filtering.

The corporate claims its new platform protects six key enterprise domains: cloud apps, endpoints, electronic mail, delicate knowledge, community, and customers. All of the modules will be managed and monitored by means of a single dashboard. Communication among the many modules is dealt with by an AI-driven knowledge engine that, based on Coro, routinely remediates threats and surfaces solely probably the most vital occasions.

Coro sells every module individually or in bundles. Every module begins at $4 per person, per 30 days. The associated fee for all 14 modules begins at lower than $18 per person, per 30 days.

Genetec proclaims new model of Safety Heart

December 5: Unified safety, public security, operations, and enterprise intelligence supplier Genetec has launched a brand new model of its flagship Security Center platform, shifting it to a steady supply method.

The replace provides new options together with mapping enhancements, together with a brand new map widget for dashboards and improved zoom conduct and configuration enhancements for authentication providers. The corporate mentioned it plans to launch extra options for Safety Heart all through 2024 to allow superior workflow actions.

Software safety coaching supplier Safety Journey provides {industry} customary assist

December 5: Coding and AppSec coaching supplier Safety Journey has added industry standard support capabilities to its platform. The corporate says it’s platform now contains assist for Net Content material Accessibility Pointers (WCAG), System for Cross-Area Identification Administration (SCIM) and continued compliance with SOC2 Kind 2.

“The brand new capabilities imply massive enterprises can now present software safety schooling to their improvement groups from a platform that meets safety, international accessibility, and automatic person provisioning necessities,” Safety Journey mentioned in a press launch.

These options make sure that in-depth coaching applications are supplied to all learners together with those that are sight and hearing-impaired, streamline person entry and lifecycle administration, and supply extra assurances on the rigorous safety of the platform.

Cloudbrink provides firewall-as-service to zero-trust entry platform

December 5: Cloudbrink has added firewall-as-a-service (FWaaS) to its zero-trust access solution that it says permits admins to set granular controls based on static and dynamic properties of end-users and their units.

The corporate, which supplies zero-trust software connectivity for hybrid workforces, claims that offloading remote-user safety features improves the soundness of current firewalls and the community efficiency skilled by distant customers.

“Current firewalls have been by no means designed with a big work-from-anywhere workforce in thoughts,” Cloudbrink CEO Prakash Mana mentioned in a press launch. “Our FWaaS takes care of the distant customers, leaving the present firewall to do the roles it was supposed for — similar to Layer 3 safety in opposition to DDoS assaults. In the event you’re solely utilizing a firewall to guard a distant workforce, the Cloudbrink service can change it altogether.”

Cloudbrink’s FWaaS static properties embody guidelines about what sources or purposes will be accessed by people and the corporate mentioned it plans to launch dynamic properties masking machine compliance in addition to prolonged reporting capabilities enabling safety and networking groups to identify anomalies primarily based on person conduct and alternatives to tune software efficiency.

Varonis launches automated safety for knowledge in multi-cloud environments

December 5: Varonis has updated its cloud-native platform to assist prospects constantly uncover regulated knowledge, remediate misconfigurations and extreme entry, and cease assaults on knowledge in providers similar to Azure Blob and AWS S3, RDS, and unmanaged databases in EC2.

The replace was designed to enhance customers’ entry to a centralized overview of knowledge and cloud safety posture. It additionally goals to assist uncover and classify delicate knowledge saved in Azure Blob and AWS databases; determine and remediate publicity danger by means of extreme entry, misconfiguration, and third-party purposes; and monitor exercise to detect and examine threats throughout the cloud ecosystem.

Databarracks launches cloud-based restoration touchdown zone

November 30: Databarracks launched Jump-Start, a preconfigured, cloud-based catastrophe restoration touchdown zone. Through the use of infrastructure as code, sources, networking, safety, and governance will be activated for restoration.

Databarracks claims that deploying the catastrophe restoration within the cloud by means of infrastructure as code means it’s remoted, safe and unaffected by points to manufacturing. “Restoration is accelerated as a result of we carry the backups and the restoration surroundings collectively,” Databarracks MD James Watts mentioned in an announcement.

The profit, based on the corporate, is that there isn’t a want for various {hardware} accessible or a restoration web site.

Uptycs proclaims Cross-Cloud Anomaly Detection Engine

November 29: Uptycs introduced its Cross-Cloud Anomaly Detection Engine, which is, based on the corporate, able to analyzing billions of occasions in near-real time. The instrument helps determine potential breaches on workloads working on AWS and hybrid multi-cloud environments.

Uptycs makes use of machine studying strategies and correlates anomalies with MITRE Engenuity’s ATT&CK Evaluations: Enterprise detections to reduce the time to detect menace conduct.

Piiano launches code analyzer

November 29: Piiano has launched code analyzer Flows. The instrument is designed to constantly analyze supply code in the course of the improvement course of and to trace when, the place and the way delicate knowledge is getting used and saved. Piiano claims the instrument finds potential knowledge leaks inside supply code and ensures that delicate info is protected earlier than the code reaches manufacturing.

A trial, restricted model of Flows will likely be accessible without cost till the top of 2023. After that the pricing mannequin will depend upon the variety of scans and variety of code repositories.

Skyhawk provides AI-based, autonomous purple teaming to platform

November 28: Skyhawk Safety has launched an AI-based, autonomous purple workforce to its platform to offer adaptive cloud menace detection and response.

The addition of its Steady Proactive Safety function to Skyhawk’s cloud menace detection and response Synthesis Safety Platform constantly enhances the safety of a buyer’s cloud, the corporate mentioned in a press launch.

In keeping with Skyhawk, the brand new providing constantly analyzes buyer cloud infrastructure, proactively runs assault simulations in opposition to it and makes use of the outcomes to organize verified detections, validated automated responses and remediation suggestions to make sure the cloud has the hottest safety defenses in place.

This course of contains studying and automatic adaptation of menace detection to allow safety groups to take proactive and adaptive approaches to safety technique. The function runs an AI-based crimson workforce in opposition to an AI-based blue workforce to find least-resistance paths, simulating assaults in opposition to them and utilizing the outcomes to enhance safety.

Lacework launched gen AI assistant to assist alert response

November 28: Lacework launched a generative AI assistant to assist safety groups reply to alerts from the Lacework platform. Assistive AI is designed to assist groups perceive why they need to take a look at a specific alert and likewise presents steering on tips on how to examine and handle the problem.

The assistant combines the insights generated from Lacework Polygraph machine studying with the assistive know-how from LLM’s. Lacework additionally makes use of generative AI mannequin providers from Amazon Bedrock, experimenting with completely different fashions.

Immuta integrates Information Safety Platform with Amazon S3 

November 27: Information safety agency Immuta has launched native integration between its Immuta Information Safety Platform and Amazon’s Easy Storage Service (Amazon S3) object storage service. This integration supplies prospects with streamlined knowledge entry management and safety throughout storage and compute platforms utilizing Amazon S3 Entry Grants, a brand new Amazon S3 entry management function that permits prospects to handle knowledge permissions at scale for person identities managed by company directories.

“Immuta helps simplify knowledge entry and safety for knowledge saved in Amazon S3 so customers can extra safely leverage that knowledge for his or her analytics and AI initiatives. This, paired with Immuta’s ‘write as soon as, apply in every single place’ coverage method, helps prospects democratize and enhance knowledge utilization whereas nonetheless adhering to international rules,” CTO Steve Touw mentioned in a press launch.

Amazon S3 shops greater than 350 trillion objects with over 100 million requests per second to course of a large number of workloads together with synthetic intelligence and knowledge analytics. The just lately added AWS Entry Grants function maps identities in directories similar to Lively Listing, or AWS Identification and Entry Administration (IAM) Principals, to datasets in S3, serving to to handle knowledge permissions at scale by granting S3 entry to end-users primarily based on their company id.

Development Micro launches AI assistant

November 27: Development Micro launched Development Companion a generative AI instrument designed to assist analysts save time on handbook danger evaluation. The corporate claims the instrument explains and contextualizes alerts, triages and recommends custom-made response actions, decodes and explains advanced scripts and command strains, helps analysts develop and execute refined menace looking queries, and helps incident responders develop OSQuery queries within the IR and forensics module.

The mix of adaptive, model-driven menace alerts in Development Imaginative and prescient One and Companion’s gen AI capabilities can speed up incident response occasions by 30%, scale back incident reporting by as much as two hours per report, and drive extra full assault containment, based on Development Micro.

Sumo Logic provides new options to its platform to higher combine with AWS providers

November 27: SaaS analytics platform Sumo Logic has added new options and updates to its platform to increase and speed up troubleshooting and safety throughout AWS environments.

The brand new options embody Sumo Logic Log Analytics for AWS, which “delivers a curated view and a single pane of glass for monitoring and troubleshooting AWS providers simply and successfully,” the corporate mentioned in a press launch. “The zero-configuration answer routinely collects logs and metrics knowledge from 12 core AWS providers together with EC2, Lambda, ECS, RDS, DynamoDB, API GW, and Load Balancers, in a single single step.”

Sumo has additionally added Cloud Infrastructure Safety for AWS, designed to offer perception into energetic threats, non-compliant safety controls, and suspicious exercise throughout advanced AWS environments.

The corporate mentioned it has added a number of new options to its synthetic intelligence and machine language fashions:

  • AI-Pushed Alerting makes use of superior anomaly detection, machine studying, and clever playbooks to scale back the noise of every day alerts and false alarms by highlighting probably the most vital points that require speedy consideration.
  • International Intelligence for AWS CloudTrail DevOps offers perception into AWS efficiency and configuration.
  • International Intelligence for AWS CloudTrail SecOps permits the detection of doubtless malicious configuration adjustments in AWS accounts by utilizing a machine-learning mannequin to match CloudTrail occasions in opposition to a cohort of AWS prospects.

November 27: Information safety agency Fortanix has launched the Key perception as an included functionality in its Fortanix Information Safety Supervisor platform. Key perception is designed to find, assess, and remediate danger and compliance gaps throughout hybrid multi-cloud environments.

Key Perception supplies consolidated insights and management of all cryptographic keys to guard vital knowledge providers, the corporate mentioned in a press launch. “Safety, cloud and developer groups can collaborate to evaluate danger posture and remediate compliance gaps in line with insurance policies, regulatory mandates, or {industry} requirements (NIST, GDPR, PCI, and many others.),” Fortanix mentioned.

Wiz brings native AI safety capabilities to its CNAPP

November 16: CNAPP vendor Wiz has launched Wiz for AI Safety, which provides native AI safety capabilities to its cloud-native software safety platform. It has 4 foremost elements: AI Safety Posture Administration (AI-SPM), an AI safety dashboard, and AI extensions for Wiz’s Information Safety Posture Administration (DSPM) and Assault Path Evaluation capabilities.

AI-SPM is designed to mitigate the chance of shadow AI by offering visibility into all sources and know-how in a corporation’s AI pipeline. The corporate claims it will possibly detect AI providers throughout cloud providers, SDKs, and AI applied sciences similar to AWS SageMaker, GCP Vertex AI, and Azure Cognitive Analysis.

By extending DSPM to AI, Wiz goals to determine and defend AI coaching knowledge within the cloud by offering out-of-the-box controls. Assault paths that danger knowledge leakage or poisoning can then be eliminated.

Assault Path Evaluation can now assess AI pipeline danger throughout vulnerabilities, identities, knowledge, misconfigurations, and extra. These dangers can then be correlated on the Wiz Safety Graph and potential assault paths will be eliminated.

Wiz’s new AI safety dashboard is meant to assist AI builders perceive their AI safety posture. It supplies a prioritized listing of dangers in addition to an AI stock and identified AI SDK vulnerabilities.

IONIX provides publicity administration options to its assault floor administration platform

November 16: IONIX has introduced the launch of Menace Publicity Radar, which the corporate calls the primary menace publicity administration functionality. IONIX will combine the brand new know-how with its assault floor administration (ASM) platform. IONIX claims that Menace Publicity Radar supplies a unified view of publicity to threats throughout the enterprise together with cloud, on-premises, SaaS, and third-party techniques.

The brand new answer consolidates safety findings right into a single view with two choices: a radar-like visualization and a abstract desk from which customers can drill down for extra clarification or directions for mitigating the uncovered belongings. Information is color-coded to spotlight pressing gadgets needing consideration.

Dwelling Safety proclaims Human Threat Operations Heart

November 15: Dwelling Safety has introduced the Human Risk Operations Center (HROC), a mix of the safety operations middle (SOC) safety consciousness and coaching, and governance, danger, and compliance (GRC) groups. HROC is powered by the corporate’s Unify platform and aggregates and correlates worker behaviors utilizing knowledge from a corporation’s current safety instruments.

The corporate claims it presents one pane of glass with real-time visibility into an organization’s riskiest folks, departments, and applications. This helps SOC and GRC groups plan subsequent actions and measures the influence of bettering insurance policies and behaviors. It helps API integrations for a number of the hottest safety instruments together with CrowdStrike, Microsoft, Proofpoint, and Zscaler.

HROC is offered now and will be deployed in current Safety Operations Facilities or as a standalone providing worldwide, and it’s priced primarily based on the scale of the group.

SecureAuth proclaims new launch of Arculix entry administration and authentication platform

November 15: SecureAuth has launched a new version of its Arculix entry administration and authentication platform. The brand new launch contains enhancements to its Orchestration Engine and improved integration with some Citrix purposes and Microsoft Entra ID (previously Azure). Orchestration Engine enhancements embody a no-code, drag-and-drop surroundings to extra simply combine and deploy id providers. Directors can customise the end-user id lifecycle together with registration, verification, authentication, and post-authorization. Orchestration Engine is offered to prospects who use the premium model of Arculix, which is bought on a per-user/month-to-month energetic person foundation.

By integrating with Citrix by means of its Machine Belief answer, Arculix can present what SecureAuth guarantees to be a “frictionless login expertise.” Arculix can now authenticate customers immediately in opposition to Microsoft Entra ID, permitting for pass-through authentication.

Sophos provides three new menace detection and response options

November 14: Cybersecurity-as-a-service vendor Sophos has announced three new solutions and capabilities designed to guard in opposition to energetic threats. Sophos Firewall v20 software program with Lively Menace Response will determine, cease, and block assaults with out the necessity to add firewall guidelines, based on the corporate. The brand new model additionally integrates with Sophos’s Zero-Belief Community Entry (ZTNA) gateway, which permits safe distant entry to purposes behind the firewall. The corporate has additionally enhanced the community scalability of Sophos Firewall to assist distributed environments, and it has improved ease-of-use administration.

Sophos Prolonged Detection and Response (XDR) and Managed Detection and Response (MDR) prospects now have entry to Sophos Community Detection and Response (NDR) with XDR. Sophos NDR scans community exercise for doubtlessly malicious site visitors patterns.

Lastly, Sophos has enhanced its XDR answer with extra third-party integrations to attach safety knowledge throughout a number of sources for sooner detection and response, based on the corporate. Safety operations and analyst workflow and case administration options have additionally been improved to higher filter alerts and supply visibility from a single console.

OneSpan provides passwordless authentication to its DigiPass Authenticator line

November 14: Digital agreements safety firm OneSpan has introduced an enhancement to its Digipass Authenticators line. DIGIPASS FX1 BIO permits passwordless authentication through a bodily passkey and fingerprint scan. The corporate claims this mix of biometric authentication and public-key cryptography will assist firms meet compliance necessities, scale back phishing and different social engineering assaults, and enhance the person expertise. DIGIPASS FX1 BIO relies on the FIDO customary.

Stream Safety proclaims Cloud Twin cloudsecops platform

November 14: Stream Safety (previously Lightlytics) has introduced three new features for its Cloud Twin engine, a cloud safety operations (cloudsecops) platform that may assist detect and examine threats and exposures of their cloud environments. The corporate claims it will possibly now map cloud dependencies in real-time quite than periodically, permitting safety and operations groups to higher cooperate to handle safety gaps.

The brand new options, which will likely be routinely accessible to current prospects, are:

  • Azure integration: Cloud Twin now helps Microsoft Azure, which Stream Safety claims permits it to mannequin all of the doable paths and site visitors between completely different cloud platforms.
  • Vulnerability correlation: The platform can assist safety groups prioritize efforts by correlating vulnerabilities with their exploitability degree.
  • Menace anomaly detection: Cloud Twin now has menace anomaly detection capabilities to determine malicious conduct and unauthorized entry.

Kasada launches KasadaIQ assault prediction providers

November 14: Menace detection and administration agency Kasada has launched a brand new assault prediction platform designed to counter bot fraud. The KasadaIQ suite debuted with its first service, KasadaIQ for Fraud, with plans so as to add extra capabilities sooner or later.

KasadaIQ for Fraud is designed to offer companies with perception into how bots goal digital channels and buyer knowledge by providing visibility into non-traditional knowledge sources and adversary communities by means of the “functionality to detect assaults earlier than they occur and make sure threats that will in any other case go undetected,” the corporate mentioned.

Core features of KasadaIQ for Fraud embody:

Unconventional sourcing: Kasada displays exercise inside non-traditional sources — together with resale marketplaces, fraud teams, proxy suppliers, account technology teams, and internet hosting suppliers.

Early warnings: Kasada’s analysts first determine and vet present and rising threats inside its knowledge system, then ship out advance alerts. 

Bot acquisition and evaluation: Kasada secretly purchases bots in circulation and extensively analyzes how they work.

Stolen credential evaluation: Kasada purchases and evaluates stolen credential units from prison marketplaces to assist the shopper treatment safety gaps and on-line fraud.

Devoted analyst hours: Prospects obtain a set quantity of analyst hours for Kasada to research what’s most related to their wants, similar to intel on fraud teams or reverse-engineering assaults.

Skilled providers: Kasada will scope customized necessities and supply professional steering on tips on how to greatest obtain the specified outcomes.

Cycode debuts ConnectorX with software safety posture administration functionality

November 14: Software safety posture administration (ASPM) supplier Cycode has launched its click-and-consume third-party ASPM connector platform ConnectorX and introduced vital enhancements to its danger intelligence graph (RIG) for risk-based prioritization. The platform goals to foster improved collaboration between safety and improvement groups. It contains greater than 40 software program improvement lifecycle integrations, together with the introduction of assist for Wiz and Black Duck.

The Cycode platform supplies firms with the selection to make use of its native ASPM instruments or maximize investments of their current AppSec instruments. Corporations can plug in any AppSec answer and “inside minutes,” acquire correct, real-time visibility into their safety posture, based on the corporate.

DirectDefense ThreatAdvisor 3.0 goals to streamline safety operations with SOAR know-how

November 14: Info safety providers firm DirectDefense has launched ThreatAdvisor 3.0, a serious replace to its proprietary safety orchestration, automation, and response (SOAR) platform. ThreatAdvisor 3.0 is designed to enhance the velocity, effectivity, and accuracy of DirectDefense’s Safety Operations Heart (SOC), the corporate mentioned in a press launch.

The platform presents custom-made steady safety monitoring and administration, automates handbook processes, and contains an intensive information base for compliance, safety occasions and mitigation strategies. ThreatAdvisor 3.0 integrates with different options to offer a single interface for menace administration with extra knowledge and higher context, the corporate claims. The platform collects and processes vulnerability and asset knowledge from a number of sources and compiles them right into a holistic view of a corporation’s safety posture, supporting penetration testing, operational know-how (OT) and industrial management techniques (ICS) assessments, vulnerability administration, managed detection and response (MDR), compliance assessments, and enterprise danger administration.

Lacework Code Safety expands protection to full software lifecycle 

November 14: Cloud safety agency Lacework has added the Code Security product to its infrastructure-as-code (IaC) suite to unify code and cloud safety with the goal of permitting enterprises to innovate and ship safe cloud-native purposes with elevated velocity.

Lacework Code Safety introduces two types of static program evaluation — software program composition evaluation (SCA) focused at third-party code in prospects’ repositories, and static software safety testing (SAST) concentrating on first-party code. The Lacework platform now encompasses code as it’s written, infrastructure as code, containers, id and entitlement administration, and runtime throughout clouds.

Lacework added that prospects can have entry to always-up-to-date software program payments of supplies (SBOMs) for each software and continuous visibility into their software program provide chain, in addition to an understanding of open-source license danger.

Palo Alto Networks updates Cortex XSIAM

November 13: Palo Alto Networks has announced Cortex XSIAM 2.0, an up to date model of its current product that now has a command middle, MITRE ATT&CK Protection Dashboard and convey your individual ML (BYOML) amongst different updates.

The brand new options are:

  • XSIAM Command Heart: With a extra user-friendly design, XSIAM Command Heart presents a complete overview of SOC operations, together with visibility into all knowledge sources being consumed by XSIAM, safety alerts and incident info, such because the variety of resolved or open safety incidents.
  • MITRE ATT&CK Protection Dashboard: That is designed to permit mapping protection on to MITRE ATT&CK, offering detailed visibility of detection and prevention protection throughout ways and strategies into the MITRE ATT&CK framework.
  • Carry your individual ML: For organizations that wish to construct their very own customized ML mannequin, XSIAM ingests full safety knowledge throughout a whole bunch of supported sources to allow higher out-of-the-box AI/ML analytics. SOCs can use this to create and customise ML fashions in addition to combine their very own fashions.
  • Contextual in-product assist assistant: Entry to product assist and documentation with out the necessity to navigate out of the product.
  • New safety safety: Enhance detection and safety protection capabilities with new modules for early detection of threats concentrating on macOS ransomware, Kubernetes(K8s) and grasp boot information (MBRs).
  • Community detection (NDR) protection: Develop the community protection of the endpoints with over 50 new detectors masking generic and particular protocol-based menace detection.
  • Superior Native Evaluation for macOS and Linux: Offers enhanced protection for native evaluation of macOS and Linux file techniques, leveraging ML fashions to offer correct and adaptive responses to evolving threats.
  • Free textual content search: A simplified search that permits analysts to question your complete safety knowledge set, with out the necessity to craft particular XQL queries.
  • New assault floor administration (ASM) insurance policies: New ASM insurance policies added to the present library of over 700 insurance policies.