Managed Security Services

Managed Security Services Provider (MSSP) Market News: 4 December 2023

Credit: Getty Images

Each business day, MSSP Alert delivers a quick lineup of news, analysis and chatter from across the managed security services provider ecosystem.

  • The Content: Written for MSSPs and MSPs; threat hunters; security operations center as a service (SOCaaS), managed detection and response (MDR) and eXtended detection and response (XDR) providers; and those who partner with such companies.
  • Frequency and Format: Every business morning. Typically, one or two sentences for each item below.
  • Reaching Our Inbox: Send news, tips and rumors to Managing Editor Jim Masters: [email protected].

Today’s MSSP, MSP, MDR, XDR and Cybersecurity Market News

1. Cybersecurity Education Initiative: Stellar Cyber, an open XDR technology specialist, has launched the Stellar Cyber University Program. The program is intended for educational organizations that dedicate themselves to developing the next generation of cybersecurity professionals and provide not-for-profit security operations services to underserved communities. The program includes access to cybersecurity technology, curriculum and experts within the Stellar Cyber ecosystem. This invitation-only program is available to academic institutions and underserved communities.

2. Product Launch: ManageEngine has unveiled a dual-layered threat detection system in its security information and event management (SIEM) solution, Log360. The new feature, available in Log360's threat detection, investigation and response (TDIR) component, Vigil IQ, empowers security operations center (SOC) teams in organizations with improved accuracy and enhanced precision in threat detection.

3. MSP Acquisition Closes: VC3, a North American managed service provider (MSP) focused on municipalities, financial services organizations and commercial businesses, has announced the acquisition of FPA Technology Services, an outsourced IT service provider that has operated in the greater Los Angeles area since its founding in 1991. Joining forces with the MSP expands VC3’s existing footprint in California, the company said.

4. Product Launch: CyberCatch Holdings, a SaaS solution provider, has launched a solution to enable compliance with U.S. Federal Trade Commission (FTC) cybersecurity requirements under its Safeguards Rule and recent amendment. CyberCatch is launching a new solution, FTC Compliance Manager, for the thousands of non-bank financial institutions that must perform a compliance risk assessment and implement and maintain cybersecurity controls and report a cybersecurity incident to the FTC. 

5. Acquisition Closes: Thales announced that it has completed the acquisition of Imperva earlier than expected (previously foreseen at the beginning of 2024). This is a key milestone for Thales, which employs more than 5,800 cybersecurity experts across 68 countries, the company said.

6. Security Partnership: Check Point Software Technologies announced that it has formed a cybersecurity partnership with the National Football League's Denver Broncos to protect Empower Field at Mile High. The Broncos will leverage a unified platform that provides a single pane of glass to seamlessly protect their network, perimeter and cloud applications, Check Point said. “During games and concerts, we push up to 25 terabytes of WiFi data through the firewalls," said Russ Trainor, senior vice president of Information Technology for the Denver Broncos. "We rely on Check Point to quarterback our security by proactively preventing cyberattacks from disrupting operations.”

7. Security Alert: The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), Environmental Protection Agency (EPA), and the Israel National Cyber Directorate (INCD) have issued a joint Cybersecurity Advisory (CSA) to highlight continued malicious cyber activity against operational technology devices by Iranian Government Islamic Revolutionary Guard Corps (IRGC)-affiliated Advanced Persistent Threat (APT) cyber actors. IRGC-affiliated cyber actors using the persona “CyberAv3ngers” are actively targeting and compromising Israeli-made Unitronics Vision Series programmable logic controllers (PLCs). These PLCs are commonly used in the water and wastewater systems (WWS) sector and in other industries including, but not limited to, energy, food and beverage manufacturing and healthcare.

8. Okta Reports Cyberattack: Okta reported that hackers stole information on all users of its customer support system in a network breach two months ago. Okta provides identity services such as single sign-on and multi-factor authentication to secure logins for online applications and websites to customers, including Microsoft-backed OpenAI. The San Francisco-based company notified customers that it has determined hackers downloaded a report containing data including names and email addresses of all clients that use its customer support system, the company said. (Source: Reuters)

Jim Masters

Jim Masters is Managing Editor of MSSP Alert, and holds a B.A. degree in Journalism from Northern Illinois University. His career has spanned governmental and investigative reporting for daily newspapers in the Northwest Indiana Region and 16 years in a global internal communications role for a Fortune 500 professional services company. Additionally, he is co-owner of the Lake County Corn Dogs minor league baseball franchise, located in Crown Point, Indiana. In his spare time, he enjoys writing and recording his own music, oil painting, biking, volleyball, golf and cheering on the Corn Dogs.