Each business day, MSSP Alert delivers a quick lineup of news, analysis and chatter from across the managed security services provider ecosystem.
- The Content: Written for MSSPs and MSPs; threat hunters; security operations center as a service (SOCaaS); managed detection and response (MDR) and eXtended detection and response (XDR) providers; and those who partner with such companies.
- Frequency and Format: Every business morning. Typically, one or two sentences for each item below.
- Reaching Our Inbox: Send news, tips and rumors to Managing Editor Jim Masters: [email protected].
Today’s MSSP, MSP, MDR, XDR and Cybersecurity Market News
1. Product Launch: RapidFort, a San Francisco-based cybersecurity startup specializing in software attack surface management (SASM), has launched RapidFort Runtime Protection, its flagship runtime toolset. Runtime Protection provides security teams with a deep understanding of their software and the tools needed to automatically mitigate vulnerabilities to reduce the burden on development teams, the company said.
2. Cybersecurity Solution Debuts: Vehere, a cybersecurity company specializing in network intelligence, has introduced NDR 1.3, the latest release of its network detection and response (NDR) solution. The release includes several features that enhance the product's efficiency and user-experience, including new rules to identify the latest threats and simplified dashboards for better visibility, the company said.
3. Pilot Program Success: Celerium, a cyber defense company, successfully completed a pilot of its Compromise Defender solution with the (U.S.) National Association of Counties (NACo). The purpose of the pilot was to provide advanced tools for county IT staff to support early detection of and defense against cyberattacks.
4. Contract Award: Netskope, a secure access service edge (SASE) specialist, has been selected as the preferred cloud access security broker vendor for the Canadian federal government, providing users with secure access to cloud-based applications, including all software-as-a-service applications from wherever they are located.
5. Cyber Tool Endorsement: Agile Defense, an IT services and solutions provider, announced that DuroSuite, its security technical implementation guide (STIG) compliance tool, has received an official authority to operate. DuroSuite enables users to audit and remediate vulnerabilities to ensure cybersecurity standards are maintained in accordance with Defense Information Systems Agency (DISA) requirements, the company said.
6. Leadership Move: Enklu, a commercial spatial computing platform for augmented reality, has appointed Mike Spertus as its new chief technology officer. Spertus leaves his position as a senior principal engineer at AWS, where he provided technical leadership in developer tools, low code and generative AI.
7. Malware Alert: A new malvertising campaign has been observed distributing an updated version of a macOS stealer malware called Atomic Stealer. An off-the-shelf Golang malware available for $1,000 per month, Atomic Stealer first came to light in April 2023. Shortly after that, new variants with an expanded set of information-gathering features were detected in the wild, targeting gamers and cryptocurrency users. (Source: The Hacker News)
8. Threat Actor Alert: CISA, the FBI and U.S. Cyber Command’s Cyber National Mission Force (CNMF) has published a joint Cybersecurity Advisory: Multiple Nation-State Threat Actors Exploit CVE-2022-47966 and CVE-2022-42475. This advisory provides information on an incident at an Aeronautical Sector organization, with malicious activity occurring as early as January 2023. This vulnerability allows for remote code execution on the ManageEngine application. Additional APT actors were also observed exploiting CVE-2022-42475 to establish presence on the organization’s firewall device.