Managed Security Services Provider (MSSP) News: 22 March 2019
Each business day, MSSP Alert broadcasts a quick lineup of news, analysis and chatter from across the global managed security services provider, SOC (security operations center) and IT outsourcing ecosystem.
Here’s the daily business update for Friday, March 22, 2019.
10. Talent – SIEM: JASK has promoted Kyle Derr to chief architect for the JASK ASOC platform. ASOC is a cloud-native SIEM that analyzes cloud environments, on-premises network, endpoint and logs in a single platform.
9. Cloud SIEM: Iboss cloud can now send Internet activity and security logs directly to any external logging database or SIEM, the company says.
8. Microsoft Security Software: Microsoft Windows Defender has been rebranded simply as Microsoft Defender — reflecting the security software’s extension from Windows to Apple macOS. The move is similar to previous rebrands such as Microsoft Windows Azure becoming Microsoft Azure, and Microsoft Windows Intune becoming Microsoft Intune.
7. Data Breach Notification Laws: The U.S. District of Columbia’s top lawyer has unveiled a proposal that would expand the city’s data breach notification law and give the attorney general’s office greater enforcement power, Big Law Business reports.
6. Data Breach – Oregon: The state’s Department of Human Services acknowledged a phishing incident from early January 2019 that may have exposed sensitive client information from 2 million emails, OPB reports.
5. Data Breach – Medical Devices: Medical device vendor Zoll is notifying 277,319 patients that their personal and medical data was compromised after an error made during a server migration, Health IT Security reports.
4. Data Breach – Healthcare: California-based Verity Health System is reporting its third breach since November 2018, caused by another phishing attack; this security incident potentially compromised the data of 14,894 patients, Health IT Security adds.
3. PowerShell Attacks: PowerShell (T1086) by a wide margin is the most prevalent MITRE ATT&TK technique, according to Red Canary research spanning five years of data.
2. Funding: Attivo Networks, which develops cybersecurity technology for the energy vertical, has received a strategic investment from Energy Impact Partners (EIA).
1. Top 100 MSSPs – 2019 Survey: The survey is now open. Participate and your company could be honored when we unveil the resulting Top 100 MSSPs list and research in September 2019.