Managed Security Services, MSP, MSSP

Managed Security Services Provider (MSSP) Market News: 11 September 2023

Each business day, MSSP Alert delivers a quick lineup of news, analysis and chatter from across the managed security services provider ecosystem.

  • The Content: Written for MSSPs and MSPs; threat hunters; security operations center as a service (SOCaaS); managed detection and response (MDR) and eXtended detection and response (XDR) providers; and those who partner with such companies.
  • Frequency and Format: Every business morning. Typically, one or two sentences for each item below.
  • Reaching Our Inbox: Send news, tips and rumors to Managing Editor Jim Masters: [email protected].

Today’s MSSP, MSP, MDR, XDR and Cybersecurity Market News

1. Industry Recognition: Stellar Cyber, an open eXtended detection and response (XDR) specialist, has been cited for its innovation, revenue growth and 400-plus third-party data integrations in the 2023 Frost Radar XDR Report. “From the start, Stellar Cyber designed its platform to conform with the features, capabilities, and use cases of open XDR,” the report said. “Stellar Cyber XDR is designed with simplicity and quick onboarding in mind and provides heavy support so customers can operate the solution within only a few hours.”

2. Product Launch: Vehere, a cybersecurity company specializing in network intelligence, has introduced NDR 1.3, its latest network detection and response (NDR) solution. The release includes new rules to identify the latest threats and simplified dashboards for better visibility.

3. Industry Recognition: RevealSecurity, a specialist in application detection and response, has been named a SINET16 Innovator Award winner for 2023. The annual SINET16 awards recognize the most innovative and compelling technologies that address cybersecurity threats and vulnerabilities.

4. Quantum-Safe Security Partnership: Arqit Quantum Inc., a company focused on quantum-safe encryption, and Exclusive Networks North America, a cybersecurity specialist for digital infrastructure, have announced a distribution agreement for Arqit’s unique Symmetric Key Agreement Platform. Joining Exclusive Networks’ portfolio of vendors, channel partners can offer Arqit’s groundbreaking technology that protects against both current and future cyber threats, including the risk from quantum computing.

5. Technology Integration Partnership: Foresite has formed a new partnership with Horizon3.ai to integrate its NodeZero autonomous penetration testing technology with Foresite’s ProVision platform to deliver "managed cyber testing with attacker’s view" to Foresite partners and their customers. This new offering will further enable Foresite customers to simplify risk reduction, improve security operations, streamline security compliance, prioritize security tasks, and reduce the complexity of cybersecurity overall.

6. Malware Alert: A new malware loader called HijackLoader is gaining traction among the cybercriminal community to deliver various payloads, such as DanaBotSystemBC and RedLine Stealer. "Even though HijackLoader does not contain advanced features, it is capable of using a variety of modules for code injection and execution since it uses a modular architecture, a feature that most loaders do not have," Zscaler ThreatLabz researcher Nikolaos Pantazopoulos said. (Source: The Hacker News)

7. Ransomware Attack: A massive ransomware attack has disrupted Sri Lanka’s government cloud system, Lanka Government Cloud (LGC). Sri Lanka’s Information and Communication Technology Agency confirmed the attack to several local news outlets on September 11. The attack likely started on August 26 when a gov[dot]lk domain user said they had received suspicious links over the past few weeks and that someone may have clicked one. (Source: Infosecurity Magazine)

8. Hacking Incident: A new phishing attack is using Facebook Messenger to propagate messages with malicious attachments from a "swarm of fake and hijacked personal accounts" with the ultimate goal of taking over the targets' accounts. Originating from a Vietnamese-based group, this campaign uses a tiny, compressed file attachment that packs a powerful Python-based stealer dropped in a multi-stage process full of simple yet effective obfuscation methods, according to Guardio Labs researcher Oleg Zaytsev. (Source: The Hacker News)

Jim Masters

Jim Masters is Managing Editor of MSSP Alert, and holds a B.A. degree in Journalism from Northern Illinois University. His career has spanned governmental and investigative reporting for daily newspapers in the Northwest Indiana Region and 16 years in a global internal communications role for a Fortune 500 professional services company. Additionally, he is co-owner of the Lake County Corn Dogs minor league baseball franchise, located in Crown Point, Indiana. In his spare time, he enjoys writing and recording his own music, oil painting, biking, volleyball, golf and cheering on the Corn Dogs.