Each morning MSSP Alert broadcasts a quick lineup of news, analysis and chatter from across the global managed security services provider, SOC (security operations center) and IT outsourcing ecosystem.
Here’s the lineup for Wednesday, October 11, 2017:
11. Microsoft Patch Tuesday: Microsoft on Tuesday resolved 62 unique vulnerabilities, down nearly 20% from the 76 unique vulnerabilities resolved last month. There were 10 bulletins of which nine were rated Critical and one Important. The resolved vulnerabilities included two public disclosures and one vulnerability that has been both exploited in the wild and publicly disclosed, according to Chris Goettl, product manager, Ivanti.
10. Kaspersky Lab Smoking Gun?: So why exactly did the U.S. Department of Homeland Security ban Kaspersky Lab security products from federal networks? The move apparently involved tipsters from Israeli spies who allegedly found links between Kaspersky Lab and Russia's government. Kaspersky has maintained that it has no hidden links to any government.
9. Ugly Equifax Breach Details: More Equifax breach details continue to surface -- and the details continue to get uglier. Among the latest revelations: The breach included drivers license data for more than 10 million Americas, according to The Wall Street Journal.
8. College Breach: A Cabrillo College server hack may have exposed personal information of 40,000 students, according to the Santa Cruz Sentinel. The Social Security numbers of 12,000 students were potentially compromised in the breach as well as passwords, names, dates of birth, addresses and emails of 28,000 additional students, according to the report.
7. Partner Program: FireMon, which develops intelligent security management solutions, has refreshed the FireMon Ignite Partner Program. Stephan Romeder, now VP of global business development at the company, will lead the partner charge.
6. Credit Monitoring: ID Agent, provider of Dark Web monitoring and identity theft protection solutions, has made its personal identity and credit monitoring service, SpotLight IDTM, available exclusively through the reseller channel.
5. Security Portal: Quest Software has launched a new Quest Data Protection Portal. The cloud-based management console gives MSPs end-to-end visibility for an entire data protection environment, the company claims.
4. Carbon Black: Keep an eye on major developments at Carbon Black this week. During a major customer gathering, the company unveiled a predictive security strategy while also expanding its relationship with IBM Security -- a Top 100 MSSP for 2017. We'll share more details later today.
3. Security Operations Center Compliance: SIEM specialist EventTracker says the company's security operations center (SOC) -- known as the EventTracker Control Center -- has been audited and formally certified as compliant with ISO/IEC 27001:2013. EventTracker was also validated as a Payment Card Industry (PCI) Data Security Standard (DSS) Service Provider.
2. Emerging MSSP Part One: CSG, a global IT solutions provider, has launched a managed cybersecurity push. CGS Cybersecurity services will span:
- Cybersecurity business-centric assessment and identification of business cyber-risk exposure.
- Proactive cybersecurity monitoring, 24x7 security event management and incident response and monitoring of emerging threats.
- Cybersecurity Remediation services as expansion of the company's managed services practice.
1. Emerging MSSP Part Two: Matrix42, a global managed service provider for workspace management solutions, has launched managed security services that leverage the enSilo Endpoint Security Platform. Under the terms of the partnership, Matrix42 will also have the ability to sell enSilo's single, cloud controlled, lightweight endpoint security platform in Central Europe.