IndyKite appears to be like to enhance information trustworthiness with an identity-centric method
February 21: IndyKite has introduced a brand new model of its identity-powered AI enterprise information platform. The corporate claims its identity-centric method improves trustworthiness of key information. An AI-driven danger rating guides use of the information, and the platform additionally gives supply and verification information for every information level. Actual-time analytics and perception discovery options help with choice making and menace detection and response, in keeping with IndyKite.
Metomic provides “human firewall” options to scale information safety workflows
February 20: Metomic has launched new “human firewall” options to its information safety platform. The options apply to SaaS functions similar to Google, Slack, and Microsoft Groups and are designed to assist safety and compliance groups scale information safety workflows for SaaS functions by involving staff within the danger remediation course of. Sharing this job with staff will enable for the next quantity of potential violations to be reviewed and addresses, in keeping with Metomic. The corporate additionally claims that the human firewall options will enable staff to report false positives to safety groups or present justification for sharing enterprise information. The human firewall options at the moment are out there to all Metomic prospects.
Vectra AI launches 24/7 managed prolonged detection and response service
February 15: Vectra AI has launched Vectra MXDR, a worldwide managed prolonged detection and response service. Accessible 24/7, Vectra AI is designed to defend towards assaults in hybrid and multi-cloud environments. It gives assault floor visibility throughout identification, public cloud, SaaS, information middle, and cloud networks and endpoints by integrating with EDR distributors, in keeping with Vectra AI. Options embrace AI-driven assault sign intelligence, distant response and remediation, managed safety coverage configuration, and end-to-end detection and response protection. Vectra MXDR is accessible to present prospects.
BigID provides entry governance controls
February 15: BigID has introduced new entry governance controls for its cloud and hybrid information safety and compliance platform. The brand new options enable prospects to watch and handle entry throughout the cloud and on-premises environments. The corporate claims the brand new capabilities will enable organizations to routinely determine. examine, and remediate entry rights violations throughout structured and unstructured information. This can scale back the assault floor, mitigate insider danger, and allow a zero-trust method, in keeping with BigID.
Infoblox brings AI-powered safety operations options to its BloxOne platform
February 15: Cloud networking and safety providers agency Infoblox has enhanced its BloxOne Menace Protection DNS detection and response answer with the AI-powered SOC Insights safety operations answer. SOC Insights is designed to assist safety analysts higher determine and examine safety occasions that matter and scale back response time. The corporate claims that SOC Insights consolidates particular person alerts into insights that present entry to gadget, occasion, attacker infrastructure particulars, and Infoblox’s DNS intelligence information. SOC Insights is accessible now.
Eureka Safety brings file-sharing product capabilities to its DSPM answer
February 15: Knowledge safety posture administration vendor Eureka Software program has introduced that its DSPM answer has expanded to all main cloud providers with the power to deal with file-sharing functions similar to Workplace 365, Google Drive, Field, and Dropbox. This enables the DSPM answer to offer visibility and insights into how customers share, entry, and us information throughout SaaS, IaaS, and PaaS options, the corporate claims.
Recorded Future releases generative AI assistant for menace intelligence
February 14: Intelligence firm Recorded Future has launched Recorded Future AI from beta. It’s designed to help human analysts in figuring out international threats. Recorded Future AI is constructed on the corporate’s Intelligence Graph information mannequin, and it’s able to monitoring and placing into context threats throughout cyber, bodily, and affect operations domains. Recorded Future claims its AI assistant can assist enterprises and governments outline massive, complicated menace surfaces in each the bodily and cyber worlds.
ReversingLabs Spectra Guarantee makes use of AI to detect software program provide chain threats
February 13: Software program and file safety vendor ReversingLabs has launched Spectra Guarantee, which makes use of AI with complicated binary evaluation to detect malicious code and malware embedded in software program earlier than it’s deployed and with out the necessity to have its supply code. A construct examination within the new instrument identifies tampering and malware earlier than deploying software program throughout first-, second-, and third-party elements, in keeping with the corporate. Spectra Guarantee can report points in massive, complicated software program packages in minutes or hours, ReversingLabs claims.
February 13: Seal Safety has introduced its presence with an LLM-powered open-source vulnerability remediation answer. It gives entry to safety patches throughout 5 languages, and the corporate claims it is ready to remediate 95% of important and high-severity vulnerabilities recognized within the final 5 years. The instrument is designed to automate and scale vulnerability remediation with centralized management over the vulnerability patching course of.
Legit Safety add AI discovery to its ASPM platform
February 13: Legit Safety has introduced the addition of AI-powered discovery capabilities to its utility safety posture administration (ASPM) platform. The brand new function is designed to detect the place software program builders use AI code. The corporate claims this provides safety leaders and utility safety groups visibility into AI-related dangers from the infrastructure to utility layers throughout the appliance improvement pipeline in order that they know the place to place safety controls. The brand new AI capabilities embrace safety coverage enforcement, real-time notifications of generative AI code, and alerts on LLM dangers.
Cyberhaven goals to cease insider threats with Linea AI
February 9: Cyberhaven has launched Linea AI, which makes use of the corporate’s proprietary massive lineage mannequin (LLiM) to detect insider threats. That LLiM analyzes workflows and predicts the following doubtless motion or habits to happen, flagging deviations. Cyberhaven claims the LLiM can have a look at your complete workflow throughout time for each information merchandise throughout the enterprise. Options embrace danger detection and prioritization, incident abstract, good remediation that recommends responses, and guided prevention for real-time intervention.
Qualys TotalCloud 2.0 provides SaaS safety, provide chain danger mitigation, and extra
February 8: The Qualys TotalCloud 2.0 model of its AI-based CNAPP platform now provides a single view of cloud danger and prolonged safety to SaaS functions. TruRisk Insights gives a single prioritized view of cloud dangers, which Qualys claims will streamline the identification of high-risk property. TotalCloud 2.0 has additionally integrated SaaS safety posture administration with the CNAPP platform. Different new options embrace provide chain danger administration the place TotalCloud 2.0 scans open-source software program pre- and post-deployment, and operationalized danger discount, which the corporate claims removes siloes between IT and safety with ITSM integrations. TotalCloud 2.0 is accessible now.
SailPoint broadcasts two merchandise to assist construct identification applications
February 8: SailPoint Applied sciences has launched two choices to its identification administration portfolio. The SailPoint Id Safety Cloud Normal suite is focused to firms simply beginning identification safety initiatives. It has a set of core capabilities that centralizes identity-related information, permitting organizations to control entry for all identities throughout the enterprise in a scalable manner, in keeping with Sailpoint. The brand new Buyer Success Portfolio provides three tiers of coaching and help, together with configuration help, adoption workshops, and program oversight, evaluation, and steering.
AppViewX, Fortanix companion to ship safe digital identification administration and code signing
February 7: Machine identification administration agency AppViewX and information safety firm Fortanix are combining their options to ship cloud-based safe digital identification administration with code signing in a single package deal. AppViewX’s Digital Belief Platform and Fortanix’s Knowledge Safety Supervisor (DSM) collectively deal with two safety use circumstances: the administration of machine identities throughout hybrid multi-cloud environments and simplified safe code signing for improved software program provide chain safety, in keeping with a joint press launch. The mixed providing is accessible via both vendor, joint channel companions, or the AWS Market.
F5 broadcasts new AI capabilities to guard AI-powered functions
February 7: Multi-cloud safety agency F5 has enhanced its Distributed Cloud Providers answer with API code testing and telemetry evaluation. The corporate additionally introduced that it’s implementing AI throughout its complete product portfolio. The corporate claims these enhancements present “AI-ready” API and utility safety. The AI enhancements are from expertise F5 just lately acquired from Wib, they usually allow vulnerability detection and observability through the utility improvement course of and earlier than manufacturing. F5 claims it might probably now supply API uncover, testing, posture administration, and runtime safety in a single platform.
Akamai’s Content material Protector goals to cease scraping assaults
February 6: Akamai Applied sciences has introduced the supply of its Content material Protector instrument, which the corporate claims stops malicious scraper bots with out blocking respectable visitors. It is ready to detect and mitigate these malicious scrapers. Featuresinclude protocol fingering that checks how guests hook up with your web site to find out if they’re respectable, analysis of JavaScript code, the power to differentiate between human and machine habits, and danger classification for visitors primarily based on anomalies discovered.
Teleport Coverage centralizes coverage administration for infrastructure entry
February 6: Teleport, which makes a speciality of infrastructure entry, has launched Teleport Coverage, a instrument designed to unify entry management and coverage throughout a company’s infrastructure. The brand new product gives visibility into how engineers, customers, and workloads entry infrastructure and information. The corporate claims this enables their prospects to determine points similar to inappropriate privileges and take away them. One other function is meant to hurry investigations and responses by way of a unified Entry Graph view of entry relationships. Teleport Coverage is an extension of the corporate’s Teleport Entry platform.
Metomic launches Metomic for ChatGPT
February 5: Knowledge safety agency Metomic has launched Metomic for ChatGPT, which the corporate claims will assist defend delicate information whereas utilizing OpenAI’s generative AI instrument. The brand new answer gives visibility to what information is uploaded to ChatGPT. Metomic for ChatGPT is a browser plug-in, permitting it to determine when an worker logs into the ChatGPT web site. It then scans the information going into the generative AI platform in actual time. It then alerts the safety workforce if delicate information is being moved.
February 5: Crucial infrastructure safety firm OPSWAT has broadcasts enhancements to its line of MetaDefender Kiosk merchandise. Described as “peripheral media scanning stations,” MetaDefender Kiosk merchandise are gadgets that scans detachable media for threats. OPSWAT has added a Kiosk Mini kind issue to the road that’s meant to be extra accessible, moveable, and versatile. It could additionally help tabletop and rugged environments. MetaDefender Kiosk can also be now built-in with OPSWAT’s MetaDefender Sandbox and Media Firewall merchandise, enabling adaptive menace evaluation for zero-day menace detection. Lastly, MetaDefender Kiosk Stand helps VESA-mountable Kiosks and gadgets. The three-bay stand helps a number of detachable media varieties and features a exhausting disk drive bay.
Varonis introduces managed detection and response for the information stage
February 5: Varonis Techniques’ new Managed Knowledge Detection and Response (MDDR) service goals to determine and cease threats on the information stage in addition to endpoints. Options of the 24/7 monitoring service embrace an AI evaluation engine that automates investigations, a 30-minute response window for ransomware and 120-minute response for different alerts, and a deployment time measured in hours, in keeping with the corporate. MDDR is delivered on high of Varonis’s Knowledge Safety Platform and is accessible now.
Secureworks Menace Rating makes use of AI to prioritize alerts
February 1: Secureworks has launched its AI-powered Menace Rating, which is meant to assist safety analysts prioritize safety alerts. The instrument identifies which alerts are most certainly to have a detrimental impression primarily based on the group’s operations. The corporate claims that by filtering out noise within the alerts, Menace Rating can scale back safety analyst workloads by about 50%. Menace Rating is accessible as a part of Secureworks Taegis XDR.
OX goals to eradicate handbook utility safety practices with new ASPM platform
January 31: OX Safety’s new utility safety posture administration answer, Energetic ASPM Platform, unifies utility safety practices by offering visibility, traceability, prioritization, and automatic no-code workflow-driven response, which the corporate refers to as an “lively method” to AppSec. OX claims this method ends in a steady and extra correct focusing on of important threats, which reduces alert fatigue. The answer additionally gives assault path evaluation, lively context evaluation, and pipeline invoice of supplies.
Vade makes use of AI to boost spear-phishing detection
January 31: Menace detection and response vendor Vade has improved its spear-phishing detection engine with generative AI. The corporate claims the brand new expertise will enable its engine to raised defend towards superior threats, together with these created by AI, and supply a better diploma of confidence of detection. The spear-phishing engine has been educated on conventional and AI-created spear-phishing electronic mail messages. The brand new spear-phishing engine is now carried out in its Vade for M365 electronic mail safety suite.
SentinelOne enhances menace searching capabilities of WatchTower and WatchTower Professional
January 30: Sentinel one has introduced the overall availability of latest machine-learning and superior behavioral threat-hunting capabilities for its WatchTower and WatchTower Professional managed menace searching providers. The brand new capabilities embrace anomalous and suspicious habits detection, expanded protection towards identified and rising threats, 24/7 real-time menace searching, and entry to WatchTower’s in-house menace intelligence library. As earlier than, the brand new capabilities are backed by human consultants.
New connector offers Varonis wider database help
January 30: Varonis has enhanced its information safety posture administration capabilities with the addition of a common database connector, which allows its platform to combine with linked databases hosted on-premises or within the cloud. The corporate claims this integration will enable its prospects to make use of Varonis’s library of classifiers and scalable structure to centralize information classification. The Varonis platform works with structured, semi-structured, and unstructured information.
Keyfactor provides PKI integration with Quantinuum Quantum Origin
January 30: Id safety supplier Keyfactor has partnered with quantum computing agency Quantinuum to supply a public key encryption (PKI) platform that integrates with Quantinuum’s Quantum Origin quantum entropy answer. With this integration, Keyfactor EJBCA can now present stronger root of belief to offer certificates, in keeping with Keyfactor, and gives safety towards potential misuse of quantum computing expertise.
Deep Intuition Prevention for Functions 3.0 enhances file add, utility storage protections
January 25: Deep Intuition has introduced the three.0 model of its Deep Intuition Prevention for Functions (DPA) AI-based deep-learning framework. DPA 3.0, agentless on-demand anti-malware answer, now has improved file add protections and utility storage safety. The brand new deep-learning capabilities use neural networks to keep away from shortcomings of different options similar to insufficient scanning, challenges offered by adversarial AI, or incapacity to cease unknown malware, in keeping with the corporate. Not like different instruments that require frequent cloud connections to remain updated on menace intelligence, DPA 3.0 requires updates solely a couple of times a yr. This partly makes it appropriate to be used in air-gapped environments.
Black Kite introduces month-to-month ransomware dashboard
January 24: Black Kite, a supplier of third-party cyber danger intelligence, has launch a month-to-month ransomware dashboard that reveals graphs, information, developments, and assault patterns. The corporate claims it analyzes the highest ransomware indicators to determine widespread vulnerabilities that ransomware menace actors exploit. Black Kite has additionally developed its Ransomware Susceptibility Index (RSI) utilizing information and machine studying to offer an outline of industry-specific dangers, in keeping with the corporate.
Zscaler launches Zero Belief SASE constructed with AI
January 23: Cloud safety supplier Zscaler has introduced its Zero Belief SASE. Construct with Zscaler’s Zero Belief AI, the brand new SASE is designed to scale back the associated fee and complexity of implementing zero-trust safety throughout customers, gadgets, and workloads, in accordance the the corporate. Zscaler additionally introduced that its Zero Belief SD-WAN is now usually out there together with new plug-and-play home equipment that the corporate claims will assist its prospects modernize safe connectivity for its numerous services.
Mitiga boosts incident response with Kroll partnership
January 23: Cloud and SaaS incident response agency Mitiga has partnered with Kroll, including that firm’s incident response and litigation providers to the Mitiga Cloud and Incident Response Automation (CIRA) answer. The corporate claims that the mixing of Kroll’s providers will enable its prospects to raised adjust to new US Securities and Change Fee (SEC) rules for incident reporting. Mitiga may even supply its prospects different Kroll providers at a reduction, together with pink workforce workouts, penetration testing, and digital CISO.
PQC Starter Package from Thales and Quantinuum to assist put together for post-quantum cryptography
January 22: In collaboration with Quantinuum, Thales has launched the PQC Starter Package, which is designed to assist organizations put together for post-quantum cryptography (PQC) challenges. The package permits them to check quantum-hardened encryption keys and higher perceive the potential impression of PQC on the safety of their infrastructure, in keeping with Thales. PQC Starter Package makes use of present NIST proposed algorithms that organizations can use to check safety use circumstances similar to PKI, code-signing, TLS, and web of issues (IoT). The primary iteration of the package incorporates Luna HSMs and Quantinuum’s quantum random quantity generator expertise, which permits organizations to find out whether or not their keys are securely generated and saved whereas utilizing PQC algorithms.
ArmorPoint broadcasts cybersecurity program administration options
January 20: ArmorPoint has expanded its cybersecurity providers with a set of cybersecurity program administration options, referred to as Managed Threat and Managed Technique. The corporate mentioned its aim was to offer a unified method to cybersecurity by integrating danger administration, strategic planning, and real-time menace detection. This enables organizations to take a “proactive and adaptive method to cybersecurity,” in keeping with the corporate.
VulnCheck IP Intelligence tracks attacker infrastructure and susceptible IPs
January 18: Exploit intelligence firm VulnCheck has launched its IP Intelligence function set that tracks attacker infrastructure and susceptible Web Protocol (IP) addresses in actual time. The brand new performance cross-references internet-connected datasets towards VulnCheck’s personal exploit and vulnerability intelligence info, offering perception round these gadgets and attackers’ command-and-control infrastructure, in keeping with the corporate. IP Intelligence gives a downloadable and searchable dataset to determine susceptible internet-connected gadgets. It additionally generates lists of IP addresses to be used in block lists.
Fortinet launches Wi-Fi 7-enabled safe networking answer
January 17: Community options supplier Fortinet has introduced what it claims to be the primary safe networking answer built-in with Wi-Fi 7. Forti-AP 441K is a Wi-Fi 7 entry level, and FortiSwitch T1024 helps Wi-Fi 7 bandwidth necessities with 10 gigabit Ethernet entry and 90W Energy over Ethernet (PoE) expertise. Each are a part of the Fortinet Safe Networking answer and combine with AIOps and FortiGuard AI-Powered Safety Providers. Wi-Fi 7 is the most recent wi-fi expertise designed to help wi-fi gadgets working data-heavy functions.
Salt Safety provides API posture governance to its API Safety Platform
January 17: API safety agency Salt Safety has enhanced its API Safety Platform, together with the addition of an API posture governance engine, an API filtering and querying capabilities, and improved behavioral menace response capabilities. The API posture governance engine helps organizations to create company requirements for API posture and assess compliance with these requirements, {industry} finest practices, and regulatory necessities. The corporate claims it’s going to preserve API lifecycle stakeholders in sync and guarantee safety requirements are adopted all through the API lifecycle. New API filtering and querying capabilities enable for higher API asset discovery and administration whereas offering particulars about their function, utilization patterns, and dangers. Enhanced behavioral response will enable SecOps groups to raised prioritize, triage, and analyze API-related safety occasions, in keeping with Salt. Different enhancements embrace higher sharing of API intelligence and enterprise onboarding and operationalization enhancements.
Residing Safety broadcasts Unify Energy Insights for danger operations
January 17: Human danger administration agency Residing Safety has launched Unify Energy Insights, which is meant to offer visibility into which staff are most susceptible to dangers similar to phishing, account compromise, malware, or information loss. It does so by gathering intelligence information from a number of sources similar to identification administration and safety instruments. Based on Residing Safety, Unify Energy Insights permits safety groups to watch grouping of consumer habits and detect spikes in dangerous actions. The answer additionally gives options to mitigate these dangers.
Savvy launches Id-First Safety to handle IAM permissions
January 16: SaaS safety platform supplier Savvy has introduced Id-First Safety, which is designed to find dangers related to combos of identification entry administration (IAM) permissions, consumer habits, and enterprise context. Based on Savvy, Id-First Safety permits organizations to determine dangers similar to rogue directors, compromised accounts, shadow identities, shared accounts, incomplete offboarding, and extra. The answer additionally gives automated playbooks that set “safety guardrails” that encourage customers to mitigate dangers earlier than they change into safety incidents, the corporate claims.
GTT Communications brings Fortinet SASE to its MSSP providing
January 16: Managed community and safety service supplier GTT Communications now provides safe entry service edge (SASE) capabilities powered by Fortinet. This consists of Fortinet’s zero belief community entry (ZTNA), firewall-as-a-service, cloud entry safe dealer (CASB), and safe net gateway (SWG) options, all working alongside GTT’s Managed SD-WAN providing. The Fortinet options are deployed inside GTT’s community infrastructure and all visitors is maintained on the corporate’s international IP spine. GTT claims this may scale back latency, jitter, and packet loss in addition to enhance availability.
Wiz AI-SPM now out there for the OpenAI platform
January 11: CNAPP supplier Wiz has introduced an OpenAI SaaS connector that extends help for its AI-SPM AI safety instrument to the OpenAI API platform. The instrument gives OpenAI builders with visibility into their OpenAI pipelines and permits them to raised mitigate dangers throughout the cloud and OpenAI by way of the Wiz Safety Graph, the corporate claims. Safety groups can now have visibility into new coaching jobs that AI builders create in a single view. AI-SPM additionally permits for assault path evaluation to detect dangers. The Wiz OpenAI SaaS connector for AI-SPM is accessible now.
Dasera provides Microsoft 365 to its information safety posture administration platform
January 10: Knowledge safety posture administration (DSPM) agency Dasera has expanded its platform to incorporate protections for Microsoft 365. This enables better visibility of information throughout OneDrive, SharePoint, and Groups, in keeping with the corporate, permitting organizations to raised determine and handle delicate information. With its DSPM platform, Dasera claims the enhancement will assist optimize privateness processes utilizing its coverage engine in addition to assess danger from recordsdata shared in Microsoft 365 apps.
Cohesity Cloud Providers now helps Microsoft Azure workloads
January 9: Cohesity Cloud Providers (CCS) has added help for Microsoft Azure workloads, particularly the backup and restoration of Azure digital machines (VMs) and Azure SQL databases. The brand new Azure VM capabilities inside CCS embrace backup and restoration of a complete VM in place or to an alternate location, area, or useful resource group, and help for Azure VM backup utilizing personal endpoints with a shared entry signature. CCS Azure SQL database capabilities embrace full backups on a customizable schedule, automated backups, portability of SQL databases to and from the cloud, and immutable backups saved exterior the tenant.
TitanHQ broadcasts PhishTitan anti-phishing answer
January 9: Cloud-based electronic mail safety options supplier TitanHQ has launched PhishTitan Built-in Cloud E-mail Safety (ICES). The answer works inside Microsoft 365 to scan inner and exterior electronic mail messages. It has native and API-based integration with Change On-line Safety (EOP) and Microsoft Defender. The corporate claims that PhishTitan ICES will block and remediate enterprise electronic mail compromise, account takeover, VIP impersonation, and zero-day threats. The product is accessible now.
SpecterOps provides Energetic Listing Certificates Providers safety to BloodHound Enterprise
January 9: SpecterOps has up to date its BloodHound Enterprise (BHE) platform with new assault paths for Microsoft Energetic Listing Certificates Providers (ADCS). The BHE platform is designed to take away identification assault paths in Microsoft Energetic Listing and Entra/Azure AD. The brand new ADCS assault paths give attention to widespread misconfigurations that enable attackers to steal certificates, obtain account persistence, and achieve management over Energetic Listing domains, in keeping with the corporate.
LogRhythm releases updates to LogRhythm SIEM and LogRhythm Axon
January 4, 2024: LogRhythm has up to date its self-hosted LogRhythm SIEM and cloud-native LogRhythm SaaS SIEM platforms. Enhancements to the previous embrace extra help for onboarding new Beats and Open Collectors from a single location, simplified Home windows occasion log onboarding, improved analyst workflows whereas reviewing alarm notifications, and an expanded library of supported log sources. Enhancements to LogRhythm Axon embrace a brand new interactive single investigation display screen that gives contextual case insights with drill-down of log sources and safety analytics; an improved assisted search function that implies current searches, search lists, and search queries; a brand new collector for Microsoft Workplace 365 Administration API, and extra environment friendly Axon Agent administration for on-premises information assortment.
Valimail launches Align to fulfill Google and Yahoo electronic mail authentication necessities
January 4, 2024: Valimail, a supplier of DMARC, automated authentication, and anti-phishing options, has launched Valimail Align, which is designed to validate compliance standing for brand new sender authentication necessities from Google and Yahoo. Beginning in February, Gmail and Yahoo bulk electronic mail senders shall be required to authenticate outgoing mail or danger being blocked. Valimail claims that Align checks for alignment between the SPF and DKIM electronic mail protocols to fulfill the brand new necessities. Valimail’s automation suite can then be used to succeed in compliance in a matter of days, in keeping with the corporate.
Mitiga broadcasts Investigation Workbench to evaluate cloud and SaaS incidents
December 19: Mitiga has added Investigation Workbench to its line of cloud and SaaS incident response options. The corporate claims its new instrument will present extra readability on all multi-cloud and SaaS actions via a single view. Investigation Workbench, a part of Mitiga’s IR2 cloud investigation and response automation (CIRA) platform, is designed to present safety operation middle groups visibility into chains of occasions throughout their cloud and SaaS surroundings. Based on Mitiga, this enables for sooner and easier dedication of materiality of a cyber occasion in order that they will reply appropriately.
Kasada enhances it bot protection platform
December 19: Bot administration agency Kasada has enhanced its bot protection platform and claims it might probably now higher defend towards the most recent strategies attackers use to evade detection. New options embrace randomized and dynamic defenses throughout its structure to make them more durable to bypass, machine language anomaly detection, integrity checks on client-side information assortment, and assault analytics for classification, drill-down, and filtering. The brand new enhancements can be found now to all Kasada prospects.
AI-powered AskOmni bot designed to help with SaaS safety
December 19: SaaS safety posture administration (SSPM) agency AppOmni has launched AskOmni, which it describes as an AI-powered SaaS safety assistant. AskOmni works with the AppOmni SaaS safety platform to permit pure language queries for widespread SaaS safety choices. Its generative AI expertise helps safety directors to extra rapidly determine and remediate points, the corporate claims. Different options embrace an context-sensitive chat interface and notifications, danger evaluation, real-time menace intelligence, and automatic code technology for subject decision. AskOmni is now out there as a tech preview and shall be rolled out in phases throughout 2024
Secure Safety provides module to help in SEC Compliance
December 13: Secure Safety has added a module to its platform to help with reaching compliance with SEC reporting necessities. Secure Safety, a specialist in AI-driven cyber danger administration, mentioned the SAFE Materiality Evaluation Module will “allow safety and danger leaders to attain SEC compliance by estimating and monitoring materiality of cyber incidents.”
The corporate mentioned in a press launch that the module relies on a tunable issue evaluation of knowledge danger (FAIR) materiality evaluation mannequin (MAM). “SAFE Materiality Evaluation Module permits organizations to mannequin estimated monetary losses from high danger eventualities with FAIR-MAM to cost-effectively goal safety or cyber insurance coverage investments,” mentioned COO Pankaj Goyal. “This enables them to leverage the insights to organize for the possible monetary impression to observe. The SAFE Materiality Evaluation Module is a game-changer for safety and danger leaders.”
Telaeris broadcasts RTLS emergency mustering system
December 13: Telaeris, a supplier of handheld options for bodily entry management techniques, has introduced its XPressEntry Actual-Time Location Techniques (RTLS) Emergency Evacuation Mustering system. Powered by HID’d Bluetooth Low-Vitality (BLE) beacons and gateways, the brand new product gives an automated option to account for badged staff and guests in emergency conditions. Strategically positioned BLE beacons preserve monitor of badge areas, whereas gateways are positioned at designated emergency meeting areas, so the system is aware of the placement and identification of lacking individuals.
Google Cloud broadcasts basic availability of Duet AI in Safety Operations
December 13: Google Cloud’s Duet AI in Safety Operations is now usually out there. Introduced earlier this yr on the RSA Convention, Duet AI in Safety Operations can search via massive information units utilizing natural-language queries, routinely generate summaries about case information and alerts, and supply context and suggestions for remediation.
Duet AI in Safety Operations is included with Google Cloud’s Safety Operations Enterprise and Enterprise Plus packages. Google Chronicle prospects can have free entry to Duet AI till March 5, 2024.
Notion Level launches safety consciousness coaching program
December 13: Menace prevention supplier Notion Level mentioned it has launched a brand new safety consciousness coaching program for its prospects that shall be built-in into its Superior E-mail Safety product. This system is meant to assist organizations counter superior social engineering assaults by specializing in worker habits and tailoring cybersecurity coaching to particular wants, the corporate mentioned in a press launch. The coaching program leverage providers from coaching providers supplier DCOYA and provides behavior-centric safety consciousness coaching to counter cyberattacks together with superior social engineering.
“This system leverages machine studying algorithms to seamlessly combine finest practices from behavioral psychology and advertising and marketing strategies, automating coaching that’s tailor-made to the particular wants of every worker,” the corporate mentioned. “This reduces the chance of profitable cyberattacks, information breaches, and different malicious actions.”
AI-powered analytics integrated into Zscaler
December 12: Cloud safety supplier Zscaler has added Enterprise Insights, an AI-driven analytics instrument, to its Enterprise portfolio. Enterprise Insights will allow organizations to curtail SaaS sprawl and optimize workplace utilization to enhance office expertise whereas saving cash, the corporate claims.
The corporate mentioned it has additionally integrated enhancements to the broader portfolio embrace new AI-powered improvements inside its Zscaler Risk360 and Zscaler Digital Expertise Monitoring merchandise. The additions had been documented in an organization weblog.
Qmulos introduces real-time, data-driven compliance automation and auditing updates
December 12: Compliance, safety, and danger administration automation supplier Qmulos has introduced the overall availability of its Q-Compliance V4.4.0 and Q-Audit V3.7.0 platforms. “The newest releases of each merchandise add seamless workflow and ticketing capabilities to allow customizable processes for organization-specific safety and compliance investigations, escalations, and approvals,” the corporate mentioned in a press launch.
Q-Compliance V4.4.0 introduces customizable system authorization workflows designed to offer organizations with streamlined authorization requests and approvals for his or her steady authority to function course of, the corporate mentioned. Q-Audit V3.7.0 consists of alerting capabilities with ticketing workflows to offer real-time insights and actionable steps to fortify defenses towards insider threats and different malicious actions. Extra info was made out there on the corporate’s weblog.
Censys provides threat-hunting tiers and enhancements
December 12: Menace-hunting intelligence platform Censys has added two new product tiers to its search instrument, Censys Search Solo and Censys Search Groups. The additions are a part of a collection of strategic initiatives to boost the safety group, together with the introduction of threat-hunting boot camps, the Censys Beta Workshop and vital upgrades to product infrastructure, the corporate mentioned in a press launch. Every tier is accessible month-by-month or on an annual foundation, Censys mentioned.
“Empowering the menace intelligence group is one among Censys’s largest priorities, and with these two new product tiers, we are able to proceed to assist researchers improve their menace searching work, irrespective of the scale of their workforce,” mentioned Censys CEO Brad Brooks.
Descope High quality-Grained Authorization allows granular entry management
December 12: Descope has launched an replace to its authentication and consumer administration software program as a service platform by combining roles with relationships to create versatile entry management.
With Descope’s SDKs and APIs, High quality-Grained Authorization (FGA) can outline and assign permissions primarily based on relationships between entities, enabling them to arrange authorization techniques that may match the nuances of their enterprise. FGA permits organizations so as to add relationship-based entry management (ReBAC) capabilities to their functions.
The brand new performance permits organizations to outline a schema itemizing out the sorts of entities and the potential relationships that exist inside their app; retailer the schema in order that it may be queried, managed, and up to date as relationships evolve; construct out relationships between particular entities primarily based on the prevailing schema; and add checks throughout the app that may consult with the outlined relationships earlier than making authorization choices.
Nedap launches Entry AtWork SaaS entry management system
December 11: Nedap has launched a software-as-a-service (SaaS) entry management system referred to as Entry AtWork that the corporate claims will present “firms seeking to exchange their outdated on-premises techniques with trendy and easy-to-use software program that gives higher insights with much less effort and smaller funding.”
The brand new system will help small to medium-size enterprises wanting in managing bodily entry throughout a number of websites, Nedap mentioned in a submit on its web site. It operates on an authorization mannequin that permits directors to handle entry primarily based on hierarchical groups and zones. The answer is GDPR compliant and consists of such safety measures as redundant and safe internet hosting of information in licensed datacentres throughout the European Union.
Fortinet provides Gen AI assistant to SIEM, SOAR platforms
December 11: Fortinet has added a generative AI assistant, Fortinet Advisor, to its FortiSIEM safety info and occasion administration answer and to FortiSOAR the safety orchestration, automation, and response providing. Based on Fortinet, Advisor is designed to assist SecOps groups examine and remediate threats sooner.
Fortine Advisor options embrace decoding safety alerts and producing summaries, helps analysts by accepting pure language queries and returning helpful outcomes, suggests menace remediation plans and helps to generate playbook templates translating processes to actionable plans. The assistant shall be repeatedly up to date by Fortinet AI and product specialists with the most recent menace info.
Nimbus-T World introduces Nimbus-Key ID & Authentication System
December 11: Nimbus-T World has added its Nimbus-Key ID & Authentication to the corporate’s line of identification and authentication merchandise. It’s an enterprise-level passwordless authentication answer that makes use of a dynamically encrypted Nimbus-Key ID. Every consumer will get their very own international ID, which the system verifies utilizing know-your-customer (KYC), AI, and biometrics strategies.
Qrypt and Los Alamos Nationwide Labs develop quantum random quantity generator
December 7: Qrypt and Los Alamos Nationwide Labs (LANL) have developed Qrypt’s Quantum Random Quantity Era (QRNG), which shall be a part of Qrypt’s cloud-based Quantum Entropy and Quantum Key Era providers by serving to generate “true” quantum randomness. Qrypt and LANL use photon bunching to advance provable QRNG by meticulously filtering out classical noise, isolating the quantum impact important for figuring out the system’s minimal entropy, in keeping with Qrypt.
Netskope completes roll out of Localization Zones
December 7: Netskope has accomplished the rollout of Localization Zones to its NewEdge safety personal cloud, first launched in February 2023. It gives a localized expertise for over 220 international locations and territories. The localization zones allow higher digital expertise as if going direct-to-net. It additionally gives native language and localized content material help for web sites, in addition to entry to geo-fenced content material and functions, even when there isn’t any in-country information middle.
Coro 3.0 combines EDR, SASE, and electronic mail safety right into a single platform
December 6: Coro has launched its 3.0 model of its modular cybersecurity platform. Geared toward midmarket firms, Coro 3.0 has 14 built-in modules together with endpoint detection and response (EDR), safe entry service edge (SASE), electronic mail safety, information governance, next-generation firewall (NGFW), and DNS filtering.
The corporate claims its new platform protects six key enterprise domains: cloud apps, endpoints, electronic mail, delicate information, community, and customers. All of the modules might be managed and monitored via a single dashboard. Communication among the many modules is dealt with by an AI-driven information engine that, in keeping with Coro, routinely remediates threats and surfaces solely essentially the most important occasions.
Coro sells every module individually or in bundles. Every module begins at $4 per consumer, per thirty days. The associated fee for all 14 modules begins at lower than $18 per consumer, per thirty days.
Genetec broadcasts new model of Safety Middle
December 5: Unified safety, public security, operations, and enterprise intelligence supplier Genetec has launched a brand new model of its flagship Safety Middle platform, transferring it to a steady supply method.
The replace provides new options together with mapping enhancements, together with a brand new map widget for dashboards and improved zoom habits and configuration enhancements for authentication providers. The corporate mentioned it plans to launch extra options for Safety Middle all through 2024 to allow superior workflow actions.
Utility safety coaching supplier Safety Journey provides {industry} normal help
December 5: Coding and AppSec coaching supplier Safety Journey has added {industry} normal help capabilities to its platform. The corporate says it’s platform now consists of help for Internet Content material Accessibility Pointers (WCAG), System for Cross-Area Id Administration (SCIM) and continued compliance with SOC2 Kind 2.
“The brand new capabilities imply massive enterprises can now present utility safety schooling to their improvement groups from a platform that meets safety, international accessibility, and automatic consumer provisioning necessities,” Safety Journey mentioned in a press launch.
These options be sure that in-depth coaching applications are offered to all learners together with those that are sight and hearing-impaired, streamline consumer entry and lifecycle administration, and supply extra assurances on the rigorous safety of the platform.
Cloudbrink provides firewall-as-service to zero-trust entry platform
December 5: Cloudbrink has added firewall-as-a-service (FWaaS) to its zero-trust entry answer that it says allows admins to set granular controls in keeping with static and dynamic properties of end-users and their gadgets.
The corporate, which gives zero-trust utility connectivity for hybrid workforces, claims that offloading remote-user safety capabilities improves the steadiness of present firewalls and the community efficiency skilled by distant customers.
“Present firewalls had been by no means designed with a big work-from-anywhere workforce in thoughts,” Cloudbrink CEO Prakash Mana mentioned in a press launch. “Our FWaaS takes care of the distant customers, leaving the prevailing firewall to do the roles it was meant for — similar to Layer 3 safety towards DDoS assaults. For those who’re solely utilizing a firewall to guard a distant workforce, the Cloudbrink service can exchange it altogether.”
Cloudbrink’s FWaaS static properties embrace guidelines about what assets or functions might be accessed by people and the corporate mentioned it plans to launch dynamic properties protecting gadget compliance in addition to prolonged reporting capabilities enabling safety and networking groups to identify anomalies primarily based on consumer habits and alternatives to tune utility efficiency.
Varonis launches automated safety for information in multi-cloud environments
December 5: Varonis has up to date its cloud-native platform to assist prospects repeatedly uncover regulated information, remediate misconfigurations and extreme entry, and cease assaults on information in providers similar to Azure Blob and AWS S3, RDS, and unmanaged databases in EC2.
The replace was designed to enhance customers’ entry to a centralized overview of information and cloud safety posture. It additionally goals to assist uncover and classify delicate information saved in Azure Blob and AWS databases; determine and remediate publicity danger via extreme entry, misconfiguration, and third-party functions; and monitor exercise to detect and examine threats throughout the cloud ecosystem.
Databarracks launches cloud-based restoration touchdown zone
November 30: Databarracks launched Soar-Begin, a preconfigured, cloud-based catastrophe restoration touchdown zone. By utilizing infrastructure as code, assets, networking, safety, and governance might be activated for restoration.
Databarracks claims that deploying the catastrophe restoration within the cloud via infrastructure as code means it’s remoted, safe and unaffected by points to manufacturing. “Restoration is accelerated as a result of we convey the backups and the restoration surroundings collectively,” Databarracks MD James Watts mentioned in an announcement.
The profit, in keeping with the corporate, is that there isn’t any want for various {hardware} out there or a restoration web site.
Uptycs broadcasts Cross-Cloud Anomaly Detection Engine
November 29: Uptycs introduced its Cross-Cloud Anomaly Detection Engine, which is, in keeping with the corporate, able to analyzing billions of occasions in near-real time. The instrument helps determine potential breaches on workloads working on AWS and hybrid multi-cloud environments.
Uptycs makes use of machine studying strategies and correlates anomalies with MITRE Engenuity’s ATT&CK Evaluations: Enterprise detections to reduce the time to detect menace habits.
Piiano launches code analyzer
November 29: Piiano has launched code analyzer Flows. The instrument is designed to repeatedly analyze supply code through the improvement course of and to trace when, the place and the way delicate information is getting used and saved. Piiano claims the instrument finds potential information leaks inside supply code and ensures that delicate info is protected earlier than the code reaches manufacturing.
A trial, restricted model of Flows shall be out there at no cost till the top of 2023. After that the pricing mannequin will rely upon the variety of scans and variety of code repositories.
Skyhawk provides AI-based, autonomous purple teaming to platform
November 28: Skyhawk Safety has launched an AI-based, autonomous purple workforce to its platform to offer adaptive cloud menace detection and response.
The addition of its Steady Proactive Safety function to Skyhawk’s cloud menace detection and response Synthesis Safety Platform repeatedly enhances the safety of a buyer’s cloud, the corporate mentioned in a press launch.
Based on Skyhawk, the brand new providing repeatedly analyzes buyer cloud infrastructure, proactively runs assault simulations towards it and makes use of the outcomes to organize verified detections, validated automated responses and remediation suggestions to make sure the cloud has the hottest safety defenses in place.
This course of consists of studying and automatic adaptation of menace detection to allow safety groups to take proactive and adaptive approaches to safety technique. The function runs an AI-based pink workforce towards an AI-based blue workforce to find least-resistance paths, simulating assaults towards them and utilizing the outcomes to enhance safety.
Lacework launched gen AI assistant to help alert response
November 28: Lacework launched a generative AI assistant to assist safety groups reply to alerts from the Lacework platform. Assistive AI is designed to assist groups perceive why they need to have a look at a selected alert and in addition provides steering on easy methods to examine and deal with the problem.
The assistant combines the insights generated from Lacework Polygraph machine studying with the assistive expertise from LLM’s. Lacework additionally makes use of generative AI mannequin providers from Amazon Bedrock, experimenting with completely different fashions.
Immuta integrates Knowledge Safety Platform with Amazon S3
November 27: Knowledge safety agency Immuta has launched native integration between its Immuta Knowledge Safety Platform and Amazon’s Easy Storage Service (Amazon S3) object storage service. This integration gives prospects with streamlined information entry management and safety throughout storage and compute platforms utilizing Amazon S3 Entry Grants, a brand new Amazon S3 entry management function that permits prospects to handle information permissions at scale for consumer identities managed by company directories.
“Immuta helps simplify information entry and safety for information saved in Amazon S3 so customers can extra safely leverage that information for his or her analytics and AI initiatives. This, paired with Immuta’s ‘write as soon as, apply in every single place’ coverage method, helps prospects democratize and improve information utilization whereas nonetheless adhering to international rules,” CTO Steve Touw mentioned in a press launch.
Amazon S3 shops greater than 350 trillion objects with over 100 million requests per second to course of a mess of workloads together with synthetic intelligence and information analytics. The just lately added AWS Entry Grants function maps identities in directories similar to Energetic Listing, or AWS Id and Entry Administration (IAM) Principals, to datasets in S3, serving to to handle information permissions at scale by granting S3 entry to end-users primarily based on their company identification.
Pattern Micro launches AI assistant
November 27: Pattern Micro launched Pattern Companion a generative AI instrument designed to assist analysts save time on handbook danger evaluation. The corporate claims the instrument explains and contextualizes alerts, triages and recommends custom-made response actions, decodes and explains complicated scripts and command traces, helps analysts develop and execute refined menace searching queries, and helps incident responders develop OSQuery queries within the IR and forensics module.
The mix of adaptive, model-driven menace alerts in Pattern Imaginative and prescient One and Companion’s gen AI capabilities can speed up incident response occasions by 30%, scale back incident reporting by as much as two hours per report, and drive extra full assault containment, in keeping with Pattern Micro.
Sumo Logic provides new options to its platform to raised combine with AWS providers
November 27: SaaS analytics platform Sumo Logic has added new options and updates to its platform to increase and speed up troubleshooting and safety throughout AWS environments.
The brand new options embrace Sumo Logic Log Analytics for AWS, which “delivers a curated view and a single pane of glass for monitoring and troubleshooting AWS providers simply and successfully,” the corporate mentioned in a press launch. “The zero-configuration answer routinely collects logs and metrics information from 12 core AWS providers together with EC2, Lambda, ECS, RDS, DynamoDB, API GW, and Load Balancers, in a single single step.”
Sumo has additionally added Cloud Infrastructure Safety for AWS, designed to offer perception into lively threats, non-compliant safety controls, and suspicious exercise throughout complicated AWS environments.
The corporate mentioned it has added a number of new options to its synthetic intelligence and machine language fashions:
AI-Pushed Alerting makes use of superior anomaly detection, machine studying, and clever playbooks to scale back the noise of each day alerts and false alarms by highlighting essentially the most important points that require instant consideration.
World Intelligence for AWS CloudTrail DevOps offers perception into AWS efficiency and configuration.
World Intelligence for AWS CloudTrail SecOps allows the detection of doubtless malicious configuration adjustments in AWS accounts by utilizing a machine-learning mannequin to match CloudTrail occasions towards a cohort of AWS prospects.
November 27: Knowledge safety agency Fortanix has launched the Key perception as an included functionality in its Fortanix Knowledge Safety Supervisor platform. Key perception is designed to find, assess, and remediate danger and compliance gaps throughout hybrid multi-cloud environments.
Key Perception gives consolidated insights and management of all cryptographic keys to guard important information providers, the corporate mentioned in a press launch. “Safety, cloud and developer groups can collaborate to evaluate danger posture and remediate compliance gaps in step with insurance policies, regulatory mandates, or {industry} requirements (NIST, GDPR, PCI, and many others.),” Fortanix mentioned.
Wiz brings native AI safety capabilities to its CNAPP
November 16: CNAPP vendor Wiz has launched Wiz for AI Safety, which provides native AI safety capabilities to its cloud-native utility safety platform. It has 4 predominant elements: AI Safety Posture Administration (AI-SPM), an AI safety dashboard, and AI extensions for Wiz’s Knowledge Safety Posture Administration (DSPM) and Assault Path Evaluation capabilities.
AI-SPM is designed to mitigate the danger of shadow AI by offering visibility into all assets and expertise in a company’s AI pipeline. The corporate claims it might probably detect AI providers throughout cloud providers, SDKs, and AI applied sciences similar to AWS SageMaker, GCP Vertex AI, and Azure Cognitive Analysis.
By extending DSPM to AI, Wiz goals to determine and defend AI coaching information within the cloud by offering out-of-the-box controls. Assault paths that danger information leakage or poisoning can then be eliminated.
Assault Path Evaluation can now assess AI pipeline danger throughout vulnerabilities, identities, information, misconfigurations, and extra. These dangers can then be correlated on the Wiz Safety Graph and potential assault paths might be eliminated.
Wiz’s new AI safety dashboard is meant to assist AI builders perceive their AI safety posture. It gives a prioritized checklist of dangers in addition to an AI stock and identified AI SDK vulnerabilities.
IONIX provides publicity administration options to its assault floor administration platform
November 16: IONIX has introduced the launch of Menace Publicity Radar, which the corporate calls the primary menace publicity administration functionality. IONIX will combine the brand new expertise with its assault floor administration (ASM) platform. IONIX claims that Menace Publicity Radar gives a unified view of publicity to threats throughout the enterprise together with cloud, on-premises, SaaS, and third-party techniques.
The brand new answer consolidates safety findings right into a single view with two choices: a radar-like visualization and a abstract desk from which customers can drill down for extra rationalization or directions for mitigating the uncovered property. Knowledge is color-coded to spotlight pressing objects needing consideration.
Residing Safety broadcasts Human Threat Operations Middle
November 15: Residing Safety has introduced the Human Threat Operations Middle (HROC), a mix of the safety operations middle (SOC) safety consciousness and coaching, and governance, danger, and compliance (GRC) groups. HROC is powered by the corporate’s Unify platform and aggregates and correlates worker behaviors utilizing information from a company’s present safety instruments.
The corporate claims it provides one pane of glass with real-time visibility into an organization’s riskiest folks, departments, and applications. This helps SOC and GRC groups plan subsequent actions and measures the impression of enhancing insurance policies and behaviors. It helps API integrations for a number of the hottest safety instruments together with CrowdStrike, Microsoft, Proofpoint, and Zscaler.
HROC is accessible now and might be deployed in present Safety Operations Facilities or as a standalone providing worldwide, and it’s priced primarily based on the scale of the group.
SecureAuth broadcasts new launch of Arculix entry administration and authentication platform
November 15: SecureAuth has launched a brand new model of its Arculix entry administration and authentication platform. The brand new launch consists of enhancements to its Orchestration Engine and improved integration with some Citrix functions and Microsoft Entra ID (previously Azure). Orchestration Engine enhancements embrace a no-code, drag-and-drop surroundings to extra simply combine and deploy identification providers. Directors can customise the end-user identification lifecycle together with registration, verification, authentication, and post-authorization. Orchestration Engine is accessible to prospects who use the premium model of Arculix, which is offered on a per-user/month-to-month lively consumer foundation.
By integrating with Citrix via its System Belief answer, Arculix can present what SecureAuth guarantees to be a “frictionless login expertise.” Arculix can now authenticate customers immediately towards Microsoft Entra ID, permitting for pass-through authentication.
Sophos provides three new menace detection and response options
November 14: Cybersecurity-as-a-service vendor Sophos has introduced three new options and capabilities designed to guard towards lively threats. Sophos Firewall v20 software program with Energetic Menace Response will determine, cease, and block assaults with out the necessity to add firewall guidelines, in keeping with the corporate. The brand new model additionally integrates with Sophos’s Zero-Belief Community Entry (ZTNA) gateway, which permits safe distant entry to functions behind the firewall. The corporate has additionally enhanced the community scalability of Sophos Firewall to help distributed environments, and it has improved ease-of-use administration.
Sophos Prolonged Detection and Response (XDR) and Managed Detection and Response (MDR) prospects now have entry to Sophos Community Detection and Response (NDR) with XDR. Sophos NDR scans community exercise for probably malicious visitors patterns.
Lastly, Sophos has enhanced its XDR answer with extra third-party integrations to attach safety information throughout a number of sources for sooner detection and response, in keeping with the corporate. Safety operations and analyst workflow and case administration options have additionally been improved to raised filter alerts and supply visibility from a single console.
OneSpan provides passwordless authentication to its DigiPass Authenticator line
November 14: Digital agreements safety firm OneSpan has introduced an enhancement to its Digipass Authenticators line. DIGIPASS FX1 BIO allows passwordless authentication by way of a bodily passkey and fingerprint scan. The corporate claims this mix of biometric authentication and public-key cryptography will assist firms meet compliance necessities, scale back phishing and different social engineering assaults, and enhance the consumer expertise. DIGIPASS FX1 BIO relies on the FIDO normal.
Stream Safety broadcasts Cloud Twin cloudsecops platform
November 14: Stream Safety (previously Lightlytics) has introduced three new options for its Cloud Twin engine, a cloud safety operations (cloudsecops) platform that may assist detect and examine threats and exposures of their cloud environments. The corporate claims it might probably now map cloud dependencies in real-time moderately than periodically, permitting safety and operations groups to raised cooperate to deal with safety gaps.
The brand new options, which shall be routinely out there to present prospects, are:
Azure integration: Cloud Twin now helps Microsoft Azure, which Stream Safety claims permits it to mannequin all of the potential paths and visitors between completely different cloud platforms.
Vulnerability correlation: The platform can assist safety groups prioritize efforts by correlating vulnerabilities with their exploitability stage.
Menace anomaly detection: Cloud Twin now has menace anomaly detection capabilities to determine malicious habits and unauthorized entry.
Kasada launches KasadaIQ assault prediction providers
November 14: Menace detection and administration agency Kasada has launched a brand new assault prediction platform designed to counter bot fraud. The KasadaIQ suite debuted with its first service, KasadaIQ for Fraud, with plans so as to add extra capabilities sooner or later.
KasadaIQ for Fraud is designed to offer companies with perception into how bots goal digital channels and buyer information by providing visibility into non-traditional information sources and adversary communities via the “functionality to detect assaults earlier than they occur and make sure threats that may in any other case go undetected,” the corporate mentioned.
Core capabilities of KasadaIQ for Fraud embrace:
Unconventional sourcing: Kasada displays exercise inside non-traditional sources — together with resale marketplaces, fraud teams, proxy suppliers, account technology teams, and internet hosting suppliers.
Early warnings: Kasada’s analysts first determine and vet present and rising threats inside its information system, then ship out advance alerts.
Bot acquisition and evaluation: Kasada secretly purchases bots in circulation and extensively analyzes how they work.
Stolen credential evaluation: Kasada purchases and evaluates stolen credential units from felony marketplaces to assist the client treatment safety gaps and on-line fraud.
Devoted analyst hours: Clients obtain a set quantity of analyst hours for Kasada to research what’s most related to their wants, similar to intel on fraud teams or reverse-engineering assaults.
Skilled providers: Kasada will scope customized necessities and supply skilled steering on easy methods to finest obtain the specified outcomes.
Cycode debuts ConnectorX with utility safety posture administration functionality
November 14: Utility safety posture administration (ASPM) supplier Cycode has launched its click-and-consume third-party ASPM connector platform ConnectorX and introduced vital enhancements to its danger intelligence graph (RIG) for risk-based prioritization. The platform goals to foster improved collaboration between safety and improvement groups. It consists of greater than 40 software program improvement lifecycle integrations, together with the introduction of help for Wiz and Black Duck.
The Cycode platform gives firms with the selection to make use of its native ASPM instruments or maximize investments of their present AppSec instruments. Corporations can plug in any AppSec answer and “inside minutes,” achieve correct, real-time visibility into their safety posture, in keeping with the corporate.
DirectDefense ThreatAdvisor 3.0 goals to streamline safety operations with SOAR expertise
November 14: Info safety providers firm DirectDefense has launched ThreatAdvisor 3.0, a serious replace to its proprietary safety orchestration, automation, and response (SOAR) platform. ThreatAdvisor 3.0 is designed to enhance the pace, effectivity, and accuracy of DirectDefense’s Safety Operations Middle (SOC), the corporate mentioned in a press launch.
The platform provides custom-made steady safety monitoring and administration, automates handbook processes, and consists of an in depth information base for compliance, safety occasions and mitigation strategies. ThreatAdvisor 3.0 integrates with different options to offer a single interface for menace administration with extra information and higher context, the corporate claims. The platform collects and processes vulnerability and asset information from a number of sources and compiles them right into a holistic view of a company’s safety posture, supporting penetration testing, operational expertise (OT) and industrial management techniques (ICS) assessments, vulnerability administration, managed detection and response (MDR), compliance assessments, and enterprise danger administration.
Lacework Code Safety expands protection to full utility lifecycle
November 14: Cloud safety agency Lacework has added the Code Safety product to its infrastructure-as-code (IaC) suite to unify code and cloud safety with the intention of permitting enterprises to innovate and ship safe cloud-native functions with elevated pace.
Lacework Code Safety introduces two types of static program evaluation — software program composition evaluation (SCA) focused at third-party code in prospects’ repositories, and static utility safety testing (SAST) focusing on first-party code. The Lacework platform now encompasses code as it’s written, infrastructure as code, containers, identification and entitlement administration, and runtime throughout clouds.
Lacework added that prospects can have entry to always-up-to-date software program payments of supplies (SBOMs) for each utility and continuous visibility into their software program provide chain, in addition to an understanding of open-source license danger.
Palo Alto Networks updates Cortex XSIAM
November 13: Palo Alto Networks has introduced Cortex XSIAM 2.0, an up to date model of its present product that now has a command middle, MITRE ATT&CK Protection Dashboard and produce your personal ML (BYOML) amongst different updates.
The brand new options are:
XSIAM Command Middle: With a extra user-friendly design, XSIAM Command Middle provides a complete overview of SOC operations, together with visibility into all information sources being consumed by XSIAM, safety alerts and incident info, such because the variety of resolved or open safety incidents.
MITRE ATT&CK Protection Dashboard: That is designed to permit mapping protection on to MITRE ATT&CK, offering detailed visibility of detection and prevention protection throughout techniques and strategies into the MITRE ATT&CK framework.
Carry your personal ML: For organizations that need to construct their very own customized ML mannequin, XSIAM ingests full safety information throughout a whole lot of supported sources to allow higher out-of-the-box AI/ML analytics. SOCs can use this to create and customise ML fashions in addition to combine their very own fashions.
Contextual in-product assist assistant: Entry to product assist and documentation with out the necessity to navigate out of the product.
New safety safety: Enhance detection and safety protection capabilities with new modules for early detection of threats focusing on macOS ransomware, Kubernetes(K8s) and grasp boot data (MBRs).
Community detection (NDR) protection: Increase the community protection of the endpoints with over 50 new detectors protecting generic and particular protocol-based menace detection.
Superior Native Evaluation for macOS and Linux: Offers enhanced protection for native evaluation of macOS and Linux file techniques, leveraging ML fashions to offer correct and adaptive responses to evolving threats.
Free textual content search: A simplified search that permits analysts to question your complete safety information set, with out the necessity to craft particular XQL queries.
New assault floor administration (ASM) insurance policies: New ASM insurance policies added to the prevailing library of over 700 insurance policies.