Managed Security Services

Managed Security Services Provider (MSSP) Market News: 2 October 2023

Each business day, MSSP Alert delivers a quick lineup of news, analysis and chatter from across the managed security services provider ecosystem.

  • The Content: Written for MSSPs and MSPs; threat hunters; security operations center as a service (SOCaaS); managed detection and response (MDR) and eXtended detection and response (XDR) providers; and those who partner with such companies.
  • Frequency and Format: Every business morning. Typically, one or two sentences for each item below.
  • Reaching Our Inbox: Send news, tips and rumors to Managing Editor Jim Masters: [email protected].

Today’s MSSP, MSP, MDR, XDR and Cybersecurity Market News

1. Product Launch: Rapid7, a specialist in extended risk and threat detection, announced that its managed detection and response (MDR) service now includes multi-layered endpoint prevention and forensics capabilities powered by its Insight Agent. Customers will be able to further consolidate and maximize their investment by reducing complexity, increasing efficacy, and driving efficiency with core endpoint protection use cases, the company said.

2. Cybersecurity Education: Boise State University and Stellar Cyber report that during its first year of operation, the Cyberdome initiative, a competency development program from the university's Institute for Pervasive Cybersecurity, has been highly successful for cybersecurity students and thousands of rural end users in schools, cities and counties across Idaho. Between January and July of 2023, Cyberdome students monitored more than 5,000 assets, analyzed over 53,000 possible cyberattacks and notified clients of 350 potential real-time attacks.

3. Free Offer for Cybersecurity Awareness Month: Iris Powered by Generalian identity and cyber protection platform provider is partnering with the National Cybersecurity Alliance (NCA) and several other organizations to promote the 20th anniversary of in support of Cybersecurity Awareness Month (CAM). During October, Iris will help raise awareness about the importance of cybersecurity, provide free educational resources on best practices and offer free access to its ScamAssist scam analysis tool. 

4. Product Launch: Phalanx AI has launched a new Lightweight Data Loss Prevention (DLP) solution on its Phalanx MUZE platform. Phalanx MUZE gives CISOs and security teams unprecedented control over their organization’s data to track where in the world people are accessing documents across all of their workspaces, both locally and in the cloud. This allows for a complete understanding of a company’s data security and quantifies the cyber risk associated with their documents, the Phalanx AI said.

5. Security Partnership: CloudCover is partnering with Zones to enable global access to their threat prevention cybersecurity platform. Zones, a global provider of end-to-end IT solutions, can now deliver CloudCover's cybersecurity platform, offering a new XDR/SASE security-as-a-service as part of its security practice. CloudCover will expand its agentless risk analytics that provides risk aware/control and further establishes in-network cybersecurity insurance system and methods.

6. Systems Restored After Cyberattack: Clorox reports that all its manufacturing facilities have resumed operations and it is ramping up production to restock inventories after a cyberattack last month disrupted the bleach maker's business. The company in August disclosed that a cybersecurity breach had hit portions of its information technology infrastructure, forcing it to temporarily take certain systems offline and switch to manual processing of orders. (Source: Reuters)

7. Leadership Move: Saviynt, a provider of intelligent identity and access governance solutions, has appointed Jim Routh as chief trust officer. He will work closely with Saviynt’s product and go-to-market teams to help ensure the company delivers secure identity solutions that meet its customers’ key business requirements.

8. Cyberattack on UK Royals: Pro-Russia hackers have claimed responsibility for a cyberattack that crashed the British royal family's website over the weekend. The website,, went down for over an hour on Sunday morning due to a denial-of-service attack. The website was not hacked because no access was gained to systems or content, reports states. It was unclear who was responsible for the attack. (Source: ABC News)

9. Malware Alert: Cybersecurity experts have discovered yet another malware-as-a-service threat called" BunnyLoader" that's being advertised for sale on the cybercrime underground. "BunnyLoader provides various functionalities such as downloading and executing a second-stage payload, stealing browser credentials and system information, and much more," Zscaler ThreatLabz researchers Niraj Shivtarkar and Satyam Singh said in an analysis published last week. The malware includes running remote commands on the infected machine, a keylogger to capture keystrokes, and a clipper functionality to monitor the victim's clipboard and replace content matching cryptocurrency wallet addresses with actor-controlled addresses. (Source: The Hacker News)

Jim Masters

Jim Masters is Managing Editor of MSSP Alert, and holds a B.A. degree in Journalism from Northern Illinois University. His career has spanned governmental and investigative reporting for daily newspapers in the Northwest Indiana Region and 16 years in a global internal communications role for a Fortune 500 professional services company. Additionally, he is co-owner of the Lake County Corn Dogs minor league baseball franchise, located in Crown Point, Indiana. In his spare time, he enjoys writing and recording his own music, oil painting, biking, volleyball, golf and cheering on the Corn Dogs.