Each business day, MSSP Alert delivers a quick lineup of news, analysis and chatter from across the managed security services provider ecosystem.
- The Content: Written for MSSPs and MSPs; threat hunters; security operations center as a service (SOCaaS); managed detection and response (MDR) and eXtended detection and response (XDR) providers; and those who partner with such companies.
- Frequency and Format: Every business morning. Typically, one or two sentences for each item below.
- Reaching Our Inbox: Send news, tips and rumors to Managing Editor Jim Masters: [email protected].
Today’s MSSP, MSP, MDR, XDR and Cybersecurity Market News
1. Security Partnership: Guernsey, a cybersecurity and consulting firm based in Oklahoma City, has partnered with HoganTaylor, a business advisory and public accounting firm, to provide Cybersecurity Maturity Model Certification (CMMC) services. The CMMC is designed to fortify the defense sector's cybersecurity infrastructure, ensuring that Defense Industrial Base (DIB) members are equipped to guard against evolving cyber threats.
2. Public Sector Cybersecurity Collaboration: RepRisk, a data science company that provides transparency on business conduct risks, and Carahsoft Technology Corp., a government IT solutions provider, have announced a partnership. RepRisk and Carahsoft are working together to help public sector entities make risk-informed business decisions and drive innovation by leveraging RepRisk’s event and ESG research methodology.
3. Cyber Threat Report: As Cybersecurity Awareness Month comes to a close, SonicWall has released the findings of its 2023 SonicWall Threat Mindset Survey, which found that 55% of its customers are more concerned about cyberattacks in 2023, with the main threat being focused on digital attacks like ransomware and spear phishing.
4. Funding Round: Adlumin, a security operations platform and managed detection and response (MDR) provider, has closed $70 million in Series B funding led by SYN Ventures, with participation from First In Ventures, Washington Harbour Partners and BankTech Ventures. This investment brings the company’s total raised since inception to $83 million.
5. CISA Expands Pentesting: The Cybersecurity and Infrastructure Security Agency (CISA) is expanding a “no-notice” penetration testing program across federal agencies, allowing it to find critical vulnerabilities in agency networks before hackers. The effort is the latest in CISA’s push to expand visibility across federal agency networks, hailed by agency leaders as critical to defending the government from cyberattacks. But lawmakers on the House Homeland Security Committee’s Cybersecurity and Infrastructure Protection subcommittee are raising questions about whether CISA should expand the shared cyber services it offers to agencies. (Source: Federal News Network)
6. CISA Seeks Comment on White Paper: CISA has announced a request for comment on its analysis or approaches in “Software Identification Ecosystem Option Analysis,” white paper that outlines a collective, community goal for a more harmonized software identification ecosystem that can be used across the complete, global software space for all key cybersecurity use cases.
7. Google Expands Bug Bounty Program: Google is expanding its Vulnerability Rewards Program to compensate researchers for finding attack scenarios tailored to generative artificial intelligence (AI) systems in an effort to bolster AI safety and security. The categories include prompt injections, leakage of sensitive data from training datasets, model manipulation, adversarial perturbation attacks that trigger misclassification and model theft. (Source: The Hacker News)
8. Hacker Alert: The prolific threat actor known as Scattered Spider has been observed impersonating newly hired employees in targeted firms as a ploy to blend into normal on-hire processes and takeover accounts and breach organizations across the world. Microsoft described the adversary as "one of the most dangerous financial criminal groups," calling out its operational fluidity and its ability to incorporate SMS phishing, SIM swapping and help desk fraud into its attack model. (Source: The Hacker News)
9. Iranian Malware Discovery: The Iranian threat actor known as Tortoiseshell has been attributed to a new wave of watering hole attacks that are designed to deploy a malware dubbed IMAPLoader. IMAPLoader is a .NET malware that has the ability to fingerprint victim systems using native Windows utilities and acts as a downloader for further payloads," the PwC Threat Intelligence team said.