Managed Security Services

Managed Security Services Provider (MSSP) Market News: 15 November 2023

(Getty Images)

Each business day, MSSP Alert delivers a quick lineup of news, analysis and chatter from across the managed security services provider ecosystem.

  • The Content: Written for MSSPs and MSPs; threat hunters; security operations center as a service (SOCaaS); managed detection and response (MDR) and eXtended detection and response (XDR) providers; and those who partner with such companies.
  • Frequency and Format: Every business morning. Typically, one or two sentences for each item below.
  • Reaching Our Inbox: Send news, tips and rumors to Managing Editor Jim Masters: [email protected].

Today’s MSSP, MSP, MDR, XDR and Cybersecurity Market News

1. Security Partnership: Cloud Range, a cyber range-as-a-service solution provider, is partnering with Washington Technology Solutions (WaTech) to engage in incident response training to enhance the state of Washington's cyber readiness and prepare practitioners to detect and remediate threats. WaTech operates the state’s core technology services, providing strategic and comprehensive information security to protect state networks from increasing cyber threats while serving state agencies, county, city and tribal governments, and public-benefit nonprofits.

2. Zero Trust Security Certification: The Cloud Security Alliance (CSA), an organization dedicated to defining standards, certifications and best practices to help ensure a secure cloud computing environment, is offering the Certificate of Competence in Zero Trust (CCZT). CSA created the CCZT to help security professionals build knowledge to drive the definition, implementation and management of zero trust.

3. Leadership Move: Adlumin, a managed detection and response (MDR) provider, has hired Jessvin Thomas as its first chief product officer. With more than two decades of cybersecurity experience at organizations, including Barracuda Networks, Optiv and Blackstone Group, Thomas will lead Adlumin’s product and services teams to continue developing innovative offerings that solve critical security needs.

4. New Security Center Debuts: Living Security, a specialist in human risk management, has launched the Human Risk Operations Center (HROC), fueled by Living Security’s Unify Platform. The HROC provides visibility around risk segments by department, role and location.

5. Leadership Move: DefenseStorm announced the retirement of Robert Thibodeaux, it's chief information security officer (CISO). DefenseStorm has named William Wetherill as its new CISO.

6. Product Launch: SecureAuth, a specialist in access management and authentication, has released Arculix, its next-gen access management and authentication platform. Arculix includes an enhanced orchestration engine and expanded integrations with Citrix and Microsoft Entra ID, enabling organizations to customize end-user experiences while enhancing the security posture of their technology platforms, the company said.

7. Ransomware Alert: The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) have released a joint Cybersecurity Advisory (CSA), #StopRansomware: Rhysida Ransomware. Observed as a ransomware-as-a-service (RaaS) model, Rhysida actors have compromised organizations in education, manufacturing, information technology and government sectors.

8. Hacker Gang Takedown: The FBI has dismantled the IPStorm botnet proxy network following a September plea deal with the hacker behind the operation. The U.S. Justice Department said it took down the infrastructure associated with the IPStorm malware, which experts said infected thousands of Linux, Mac, and Android devices across Asia, Europe, North America and South America. (Source: The Record)

9. New Phishing Campaign Spotted: Government entities in the Middle East are the target of new phishing campaigns that are designed to deliver a new initial access downloader dubbed "IronWind." The activity, detected between July and October 2023, has been attributed by Proofpoint to a threat actor it tracks under the name TA402, which is also known as Molerats and Gaza Cyber Gang. It shares tactical overlaps with a pro-Hamas hacking crew known as APT-C-23 (aka Arid Viper). (Source: The Hacker News)

10. University Suffers Cyberattack: Online classes were canceled and campus Wi-Fi down, along with other online services after a cyberattack at North Carolina Central University, the school said in a statement on November 14. The university said it does not think any personal data was stolen, and is working with the UNC System Office, state investigators, the FBI and the U.S. Secret Service to respond to the attack. (Source: Spectrum News)

Jim Masters

Jim Masters is Managing Editor of MSSP Alert, and holds a B.A. degree in Journalism from Northern Illinois University. His career has spanned governmental and investigative reporting for daily newspapers in the Northwest Indiana Region and 16 years in a global internal communications role for a Fortune 500 professional services company. Additionally, he is co-owner of the Lake County Corn Dogs minor league baseball franchise, located in Crown Point, Indiana. In his spare time, he enjoys writing and recording his own music, oil painting, biking, volleyball, golf and cheering on the Corn Dogs.