Managed Security Services Provider Morning News: 05 September 2017
Each morning MSSP Alert broadcasts a quick lineup of news, analysis and chatter from across the global managed security services provider, SOC (security operations center) and IT outsourcing ecosystem.
Here’s the lineup for Tuesday, September 5, 2017:
7. Federal Cybersecurity Reports: Major cybersecurity reports looking at the American government’s ability to defend itself from hacking are unfinished months after the deadline set by President Donald Trump, according to Newsweek.
6. Kaspersky Lab Debate: Should the U.S. government ban Kaspersky Lab products over alleged ties to Russia’s government? Strong opinions are emerging on both sides of the aisle. Wired Magazine defends Kaspersky in an editorial penned by Philip Chertoff, a junior cybersecurity research fellow at GLOBSEC. On the flip side, a New York Times Editorial from Jeanne Shaheen, a Democratic senator from New Hampshire, explains why she is pushing bipartisan legislation to prohibit the U.S. federal government from using Kaspersky’s software. For its part, Kaspersky has repeatedly denied any connection to Russia’s government.
5. Funding: ForgeRock, a digital identity startup, has raised $88 million in Series D funding led by Accel. The company’s sales exceeded $100 million in fiscal year 2016, and headcount will grow to 500 employees by year’s end — up from 400 at the start of 2017.
4. Another AWS Leak: TalentPen apparently exposed thousands of files containing the private info of US military and intelligence personnel on Amazon Web Services. Indeed, Upguard discovered the leak, which involved TigerSwan — but TigerSwan blamed the leak on a TalentPen relationship. Alas, this isn’t an isolated AWS data leak. A growing list of businesses and organizations — including a Republican database, Dow Jones, Time Warner, Verizon and WWE — have had their data exposed on AWS because of misconfigured user accounts.
3. Hacker Irony: The popular DDoS-for-hire service called TrueStresser has reportedly been hacked by a dissatisfied client and some of the service’s database has been leaked, according to International Business Times. The service’s database was reportedly posted on Pastebin and Hastebin by an unknown hacker, the story said.
2. Palo Alto Momentum: Palo Alto Networks unveiled stronger-than-expected quarterly results late last week, lifting the firewall company’s stock just ahead of the holiday weekend.
1. Cybersecurity Events: Multiple cybersecurity events and conferences are scheduled for September — including Fraud and Breach Prevention Summit, Splunk .conf2017 and Structure Security. Check the MSSP Alert Cybersecurity Conference Calendar for details, and don’t miss our own Top 50 MSSPs List and Research webcast on Thursday, September 28.