Each business day, MSSP Alert delivers this quick lineup of news, analysis and chatter from across the managed security services provider ecosystem.
- The Content: Written for MSSPs, SOC as a Service (SOCaaS), Managed Detection and Response (MDR), eXtended Detection and Response (XDR), threat hunters and MSP security providers — and those who need to partner with such companies.
- Frequency and Format: Every business morning. Typically, one or two sentences for each item below.
- Reaching Our Inbox: Send news, tips and rumors to Managing Editor Jim Masters: [email protected].
A. Today’s MSSP, MDR, XDR and Cybersecurity Market News
1. Cybersecurity Webinar: ESET will hold its webinar, "A False Sense of Security? Reevaluating Zero-Day Threats," on Thursday, January 26 at 1 p.m. EDT. Presented by ESET's Chief Security Evangelist Tony Anscombe, the webinar will provide insights into zero-day vulnerabilities, including tactics used by bad actors. It will also include a fresh look at best practices for businesses, cybersecurity defenders and IT administrators.
2. NSA Awards Contract: CACI International Inc has been awarded a five-year contract worth up to $284 million by the National Security Agency (NSA) to provide mission expertise and systems engineering support for the NSA’s Cybersecurity Directorate.
3. Hacker Alert: Threat actors now use OneNote attachments in phishing emails that infect victims with remote access malware, which can be used to install more malware or steal passwords and cryptocurrency wallets. This comes after attackers have been distributing malware in emails using malicious Word and Excel attachments that launch macros to download and install malware for years. (Source: Bleeping Computer)
4. Cyber Insurance Protection: Specialist insurer Beazley has launched a $45 million cyber catastrophe bond, the first insurance-linked securities instrument established in the cyber insurance market. Catastrophe bonds allow insurance companies to transfer risk to investors, which pay out to insurance companies if a specific, predetermined event occurs. (Source: Information Week)
5. Security Alert: Two security flaws have been disclosed in Samsung's Galaxy Store app for Android that could be exploited by a local attacker to stealthily install arbitrary apps or direct prospective victims to fraudulent landing pages on the web. The issues, tracked as CVE-2023-21433 and CVE-2023-21434, were discovered by NCC Group. Samsung classified the bugs as moderate risk and released fixes in version 18.104.22.168 shipped earlier this month. (Source: The Hacker News)
6. Cybersecurity Incident: Criminal hackers have posted an enormous trove of sensitive files to the internet from a San Francisco Bay Area transit system’s police department. The Bay Area Rapid Transit System (BART) Police Department said in an email that officials were investigating the posted files and that the hackers had not impacted BART services. It’s unclear when the hack occurred. (Source: NBC News)
7. Leadership Move: WatchGuard Technologies, a unified cybersecurity specialist, has hired Simon Yeo as the senior vice president of operations. In this role, Yeo will oversee WatchGuard’s information technology systems and infrastructure, security and cloud operations.
8. Cybersecurity Partnership: IoTOps solution provider SecuriThings has strengthened its partnership with Convergint, a global systems integrator, with the launch of a new remote managed services offering to ensure physical security devices perform consistently, reliably, and securely over their entire lifecycle.