Managed Security Services Provider (MSSP) News: 10 March 2021
Each business day, MSSP Alert broadcasts a quick lineup of news, analysis and chatter from across the managed security services provider ecosystem.
- The Content: Written for MSSPs, SOC as a Service (SOCaaS), Managed Detection and Response (MDR), Extended Detection and Response (XDR) and MSP security providers — and those who need to partner up with such companies.
- Frequency and Format: Every business morning. Typically one or two sentences for each item below.
- Reaching Our Inbox: Send news, tips and rumors to Joe@AfterNines.com.
A. Today’s MSSP and Cybersecurity News Alerts
1. Security Operations Center (SOC) and MDR: BlueVoyant has launched the Modern Security Operations Center. The offering spans consulting, implementation and Managed Detection and Response Services (MDR), powered by Microsoft technology. The BlueVoyant Modern SOC unites its managed services with Microsoft’s Azure Sentinel and XDR capabilities through 365 Defender and Azure Defender.
2. Funding – Application Security: Snyk has raised $300 million in Series E funding. Snyk’s valuation is now $4.7 billion post this round, quadrupling since the beginning of 2020, the company asserts. Accel and Tiger Global co-led the Series E round, with participation from existing investors Addition, Boldstart Ventures, Canaan Partners, Coatue, GV (formally Google Ventures), Salesforce Ventures, Stripes and funds managed by BlackRock. New investors include Alkeon, Atlassian Ventures, Franklin Templeton, Geodesic Capital, Sands Capital Ventures and Temasek.
3. Funding – Insider Threat Prevention: Pathlock, formerly Greenlight Technologies, has received a “strategic growth investment” from Vertica Capital Partners. The funding will be used to accelerate product development for Pathlock’s automated application governance solution and extend their intelligent insider threat prevention capabilities. Additionally, several notable security and infrastructure software veterans will be joining the Pathlock leadership team and board.
4. Funding – Financial Services Cybersecurity: Drawbridge, a provider of cybersecurity software and solutions to the alternative investment industry, has closed a minority investment from Long Ridge Equity Partners. Drawbridge serves more than 300 funds in the alternative investment industry with more than $800 billion in Assets Under Management.
5. Funding – Compromise Assessments: Lumu has raised $7.5 million in Series A funding. The round was co-led by SoftBank Group Corp’s SB Opportunity Fund and Panoramic Ventures. Lumu is a cloud-based solution that collects and standardizes metadata from across the network, including DNS queries, Network Flows, access logs from perimeter proxies and/or firewalls, and spam box filters, the company says. From there, Lumu applies Artificial Intelligence to correlate threat intelligence from these disparate data sources to isolate confirmed points of compromise, the company says. Lumu is founded by cybersecurity veteran Ricardo Villadiego. He previously founded Easy Solutions, which was acquired by BC Partners and Medina Capital in 2016. Villadiego has held positions at IBM, Internet Security Systems and Unisys.
6. Funding – Patient Privacy: Tausight has raised $20 million in Series A funding. The company’s technology is designed to help healthcare CIOs and CISOs ensure the confidentiality, integrity, and availability of patients’ protected health information (PHI). The funding round was co-led by existing investors Polaris Partners and Flare Capital Partners, alongside new investor .406 Ventures.
7. Albany Ransomware Attack – Recovery Update: The damage from a 2019 ransomware attack on Albany, New York’s city police department internal affairs computer system went further back than previously revealed. The data loss extended back to September 2017. Previous reports said the loss was from January 2018 forward, according to the Times Union.
8. Mobile Malware – Google Android: Check Point Research (CPR) recently discovered a new dropper spreading via the Google Play store. The dropper, dubbed Clast82, has the ability to avoid detection by Google Play Protect, complete the evaluation period successfully, and change the payload dropped from a non-malicious payload to the AlienBot Banker and MRAT, Check Point says.
B. Cybersecurity Partnerships and Strategic Alliances
1. Shared Threat Intelligence – Space ISAC: Cyware is partnering with the Space Information Sharing and Analysis Center (Space ISAC) to provide the organization and its members with the ability to collect, analyze, and share threat intelligence. ISACs typically share threat intelligence across specific vertical markets and industries. Within the IT channel, for instance, the CompTIA ISAO (Information Sharing and Analysis Organization) specifically serves IT solutions providers, MSPs and VARs.
2. Partner Program – SASE: Perimeter 81, a Secure Access Service Edge (SASE) and Network as a Service provider, has launched a new partner program. The program has four tiers: Reseller, Professional MSP, Advanced MSP and Premier MSP. Each tier provides partners with “clear requirements, support, and exclusive benefits at every level,” the company says.
3. Partnership – Security Operations Centers (SOCs): Telarus partners can now leverage Ntirety’s three US-based Security Operations Centers (SOC), which allow for the monitoring and management of client environments 24x7x365 regardless of location, the companies say.
C. MSSP and Cybersecurity Virtual Events and Conference Calendar
- Fortinet Accelerate 2021 (March 9-11, Virtual Conference)
- SOC as a Service for Small MSPs (March 18, MSSP Alert Webcast)
- Huntress hack_it 2021 (March 22-24, Virtual Conference)
- RSA Conference 2021 (May 17-21, Virtual Conference)
- VMware Carbon Black Connect 2021 (June 3, Virtual Conference)
- Bonus: MSSP Alert’s complete event calendar