Managed Security Services Provider (MSSP) News: 02 May 2019
Each business day, MSSP Alert broadcasts a quick lineup of news, analysis and chatter from across the global managed security services provider, SOC (security operations center) and IT outsourcing ecosystem.
Here’s the daily business update for Thursday, May 2, 2019.
12. Active Attack: Austrian construction company Porr detected a cyber attack on its communication infrastructure on Thursday and its telephone lines and emails were disrupted, Reuters reports.
11. Network Breach Update – Wipro: Research suggest the Wipro hackers have been active since 2017, and possibly 2015, and they likely re-used infrastructure from those older attacks, according to Flashpoint.
10. Network Breach Update – Citrix: Citrix Systems confirmed that the hackers who successfully breached the company’s network stole sensitive personal information of both former and current employees and were able to access internal assets for about six months, according to BleepingComputer.
9. Malware – Smartphone Apps: Memo to Google Android users that leverage third-party app stores… Zscaler has discovered some developments that may concern you.
8. Old SAP Vulnerabilities, New Risks?: Up to 50,000 companies running SAP software are at greater risk of being hacked after security researchers found new ways to exploit old vulnerabilities, Reuters reports.
7. Partner Program – Threat Management: Digital Defense Inc., a SaaS security technology provider, says its MSSP-centric channel partner program has grown more than 200 percent over the past year. The company leverages AWS (Amazon Web Services) to deliver vulnerability and threat management services. Digital Defense did not disclose actual channel revenue or profit figures.
6. Partnership – Anti-Phishing: Gradian Systems has agreed to make Valimail‘s anti-phishing technologies available in the U.K. and European markets.
5. Partnership – Risk Mitigation: Risk Based Security and Recorded Future are partnering to help joint customers more effectively identify and prioritize the vulnerabilities they should mitigate.
4. Cyber Operations Center: Network Designs Inc. (NDi) has opened the NDi Cyber Operations Office in the Georgia Cyber Center in Augusta, Georgia. The Augusta-based Georgia Cyber Center, located within the Nathan Deal Campus for Innovation, is the result of a public/private partnership among academia, state and federal government, law enforcement, the U.S. Army, and the private sector.
3. Spin-Off: NC4, which focuses on safety and security solutions, has launched a new company called Celerium to offer cybersecurity solutions across finance, healthcare, retail, automotive, aviation, and defense.
2. AWS Audits: ISACA has launched the Amazon Web Services (AWS) Audit Program to support IT auditors in their assessments of AWS deployments—including the use of AWS services, access to the AWS environment, management and interrelationships of AWS services and more.
1. Government Compliance: BlackBerry Cylance has completed an Australian Information Security Registered Assessors Program (IRAP) assessment by an accredited IRAP auditor. The result: BlackBerry Cylance claims to be the first endpoint security provider to receive IRAP certification, allowing Australian government agencies to protect their environments with AI-driven security solutions from the company.