Managed Security Services Provider (MSSP) Market News: 6 November 2023

Each business day, MSSP Alert delivers a quick lineup of news, analysis and chatter from across the managed security services provider ecosystem.

Today’s MSSP, MSP, MDR, XDR and Cybersecurity Market News

1. Leadership Move: Coalfire, a cybersecurity services and solutions company, has appointed Tom Galizia as president. Most recently, Galizia served as US national leader for Strategic Business and Platforms Growth at Deloitte. He was appointed to his new role after successfully growing a $1 billion services business as global chief commercial officer of Alphabet Google.

2. Product Launch: Cyera announced that its cloud-native data security platform now includes automated remediation for sensitive data. Cyera combines artificial intelligence (AI) and machine learning (ML) with an automated, agentless approach that empowers security teams with holistic visibility, continuous insights and a deep understanding of the data to implement the proper controls confidently, the company said.

3. Security Partnership: KnowBe4, a provider of security awareness training and a simulated phishing platform, has announced a new integration between its PhishER Plus and CrowdStrike Falcon Sandbox. Together, these offerings analyze user-reported malicious emails in a safe way without risking an organization's environment.

4. Australian Market Expansion: Zimperium announced it is supporting the Australian government by initiating an IRAP assessment of its Mobile Threat Defense (MTD) solution in a sovereign Australian data centre, enabling agencies and critical infrastructure organizations to seamlessly adopt mobile threat defense capabilities to detect mobile breaches and protect data. Zimperium's investment directly supports the Australian government's cybersecurity initiatives.

5. Malware Alert: A proxy botnet called "Socks5Systemz" has been infecting computers worldwide via the "PrivateLoader" and "Amadey" malware loaders, currently counting 10,000 infected devices. The malware infects computers and turns them into traffic-forwarding proxies for malicious, illegal or anonymous traffic. It sells this service to subscribers who pay between $1 and $140 per day in crypto to access it. (Source: Bleeping Computer)

6. Israel Cyber War Update: After suspected Iranian hackers claimed a string of recent attacks on Israeli security cameras, Israel’s cyber defense chief said he is “very concerned” that Iran could escalate its long-running covert battle with Israel in cyberspace with more serious attacks on infrastructure as the war between Israel and Hamas shows no sign of ending. “They [Iran] know that they can act there more freely [in cyberspace] than in the physical space,” said Gaby Portnoy, the head of the Israel National Cyber Directorate. “We are prepared for that as much as we can.” (Source: CNN)

7. Russian Cyber Suspect Sanctioned: The U.S. Department of the Treasury imposed sanctions against a Russian woman for taking part in the laundering of virtual currency for the country's elites and cybercriminal crews, including the Ryuk ransomware group. Ekaterina Zhdanova reportedly facilitated large cross-border transactions to assist Russian individuals to gain access to Western financial markets and circumvent international sanctions. (Source: The Hacker News)

8. Product Launch: Aqua Security, a cloud security specialist, announced that its open source solution, Trivy, now supports vulnerability scanning for Kubernetes components in addition to Kubernetes Bill of Materials (KBOM) generation. Companies can now better understand the components within their Kubernetes environment and how secure they are in order to substantially reduce risk.