Each business day, MSSP Alert delivers a quick lineup of news, analysis and chatter from across the managed security services provider ecosystem.
- The Content: Written for MSSPs and MSPs; threat hunters security operations center as a service (SOCaaS), managed detection and response (MDR) and eXtended detection and response (XDR) providers; and those who partner with such companies.
- Frequency and Format: Every business morning. Typically, one or two sentences for each item below.
- Reaching Our Inbox: Send news, tips and rumors to Managing Editor Jim Masters: [email protected].
Today’s MSSP, MSP, MDR, XDR and Cybersecurity Market News
1. Cybersecurity Education: Kaspersky has launched a new training program, Suricata for Incident Response and Threat Hunting. Developed by the company’s experts, the program provides necessary knowledge of how to write and implement Suricata rules to detect and block the most advanced threats.
2. Data Breach Update: SolarWinds said on June 23 that some of its former and current executives had been issued a Wells notice by the U.S. Securities and Exchange Commission over a massive 2020 data breach tied to the software firm. A Wells notice does not necessarily mean that recipients have violated any law. The SEC issues Wells notices to firms when it is planning to bring enforcement action against them. "We are cooperating in a long investigative process that seems to be progressing to charges by the SEC against our company and officers," a SolarWinds spokesperson said in an emailed statement. (Source: Reuters)
3. Woman in IT Security Program Offered: Cybersecurity business intelligence company CyberRisk Alliance and its flagship information and events brand SC Media announced that its 2023 Women in IT Security program is open for nominations. Now in its tenth year, the Women in IT Security program recognizes information security professionals who have made exceptional contributions to the cybersecurity field in North America. Nomination details including eligibility and overview are available here. The Women in IT Security nominations are open through August 4, 2023.
4. Product Launch: Immuta, a data security specialist, announced enhancements to its Data Security Platform for Databricks. These updates include a new native integration with Databricks Unity Catalog, which connects customers with Immuta’s latest platform capabilities providing localized sensitive data discovery, enhanced security and access control for artificial intelligence (AI) workloads, and improved data security posture management.
5. Hacker Alert: The New York City Department of Education (NYC DOE) reports hackers stole documents containing the sensitive personal information of up to 45,000 students from its MOVEit Transfer server. The managed file transfer software was used by NYC DOE to securely transfer data and documents internally and externally to various vendors, including special education service providers. NYC DOE patched the servers as soon as the developer disclosed info on the exploited vulnerability (CVE-2023-34362), However, the attackers were already abusing the bug in large-scale attacks as a zero-day before security updates were available. (Source: Bleeping Computer)
6. Cyberattack Hits Canadian Gas Stations: Petro-Canada gas stations across Canada were impacted by technical problems preventing customers from paying with credit card or rewards points, reports Suncor Energy, its parent company, in disclosing the business suffered a cyberattack. Suncor Energy is the 48th-largest public company in the world, and one of Canada's largest synthetic crude producers, having an annual revenue of $31 billion. (Source: Bleeping Computer)
7. CISA Adds to Vulnerability List: The U.S. Cybersecurity and Infrastructure Security Agency has added a batch of six flaws to its Known Exploited Vulnerabilities catalog, citing evidence of active exploitation. This comprises three vulnerabilities that Apple patched this week (CVE-2023-32434, CVE-2023-32435, and CVE-2023-32439), two flaws in VMware (CVE-2023-20867 and CVE-2023-20887), and one shortcoming impacting Zyxel devices (CVE-2023-27992). CVE-2023-32434 and CVE-2023-32435, both of which allow code execution, are said to have been exploited as zero days to deploy spyware as part of a years-long cyber espionage campaign that commenced in 2019. (Source: The Hacker News)
8. Cybersecurity Education for Kids: KnowBe4, a security awareness training and simulated phishing platform provider, has released a new youth activity kit to help teach children valuable cybersecurity skills. “As a security organization, it is our duty to impart our knowledge and expertise to help provide our customers and their families with a fun and interactive way to engage their children in online safety and security activities,” KnowBe4 CEO Stu Sjouwerman said.
Annual In-Person MSSP and Cybersecurity Conferences
- The Official Cyber Security Summit Series (Multiple dates and locations)
- 2023 International Cybersecurity Championship and Conference (IC3) (July 31-August 4, 2023, San Diego, California)
- Black Hat (August 5-10, Las Vegas, Nevada)
- Infosec World (September 25-27, Lake Buena Vista, Florida)