Each business day, MSSP Alert delivers this quick lineup of news, analysis and chatter from across the managed security services provider ecosystem.
- The Content: Written for MSSPs and MSPs; threat hunters; security operations center as a service (SOCaaS), managed detection and response (MDR), and eXtended detection and response (XDR) providers — and those who partner with such companies.
- Frequency and Format: Every business morning. Typically, one or two sentences for each item below.
- Reaching Our Inbox: Send news, tips and rumors to Managing Editor Jim Masters: [email protected].
A. Today’s MSSP Cybersecurity Market News
- New threat report: The 2023 CrowdStrike Global Threat report has dropped and among the top findings are a 112% year-over-year increase in access broker advertisements on the dark web. CrowdStrike also noted that 33 new adversaries were introduced, the biggest increase the company has ever observed in a single year. More on this later today.
- A closer look at 2022 vulnerabilities: Risk and threat detection company Rapid7 has released its 2022 Vulnerability Intelligence Report, which found that widespread exploitation of new vulnerabilities decreased last year but broad opportunist attacks still drove considerable risk. Zero-day exploitation remained a significant threat in 2022. This report also found a decline in vulnerabilities exploited to carry out ransomware attacks.
- Zero-trust partner program redesign: Zero-trust access solution provider Cyolo has redesigned its partner program and hired Jake Alosco as its new channel chief. The company said the partner program has been expanded to include OT environments and incorporate MSSPs, VARs and distribution partners in the partner enablement.
- Mobile app XDR: Mobile app cyberdefense automation platform Appdome is releasing a full range of extended detection and response (XDR) capabilities for mobile apps and brands globally. Because global consumers prefer mobile apps to other digital channels, it’s important for mobile brands to be able to leverage data about cyberattacks, fraud, malware, and other threats in mobile app development.
- Calling all allies of women in cybersecurity: Women in CyberSecurity (WiCyS) will hold an invitation-only Allyship Symposium and Breakfast at its WiCyS 2023 conference in March. The workshop is open to WiCyS sponsor and partner passholders and is designed to build greater empathy among WiCyS’s allies and help them explore tangible steps towards creating a more inclusive workforce in the cybersecurity field.