Each morning MSSP Alert broadcasts a quick lineup of news, analysis and chatter from across the global managed security services provider, SOC (security operations center) and IT outsourcing ecosystem.
Here’s the daily business update for Wednesday, December 5, 2018.
19. Election Hacks: The campaign organization for House Republicans was the victim of a cyberattack that exposed email accounts to an unknown intruder during the 2018 election cycle, The Washington Post reports.
18. Penetration Testing - Medical Devices: Alpine Security, a penetration testing company, is introducing services to address cybersecurity for medical devices.
17. Endpoint Protection: SentinelOne, an endpoint protection company, has extended its platform with more endpoint protection (EPP) and endpoint detection and response (EDR) capabilities. The new capabilities include:
- Endpoint Firewall Control -- which enables security and IT teams to control the endpoint’s firewall and immunize an organization’s network from data exfiltration and malicious IP addresses.
- Device Control, a feature that enables enterprises to maintain control and visibility over peripheral devices.
16. Integration - SOAR: D3 Security, which specializes in Security Orchestration, Automation and Response (SOAR), has achieved technical integration with McAfee Enterprise Security Manager (ESM). The connection enables accelerated threat detection, analysis, incident response and post-event reporting, and allowing security teams to coordinate seamlessly across all of their tools and resources.
15. IoT and ICS Security - Part One: Symantec has unveiled Industrial Control System Protection (ICSP) Neural, a neural network-integrated USB scanning station that helps organizations protect critical infrastructure by preventing cyberattacks on operational technology (OT). The platform is available for pre-order now, with general availability expected in 2019.
14. IoT and ICS Security - Part Two: Respond Software and ForeScout Technologies have developed a technical integration called Virtual ICS Threat Analyst Logic (VITAL). The partnership was initiated by SecurityMatters, now part of ForeScout, to help automate threat analyst decision-making processes for industrial control system (ICS) asset owners.
13. IoT Security: Pulse Secure has expanded its Zero Trust security platform with IoT and firewall auto-provisioning, and behavioral analytics. The capabilities surfaced in Pulse Secure version 9.0R3.
12. Talent - NCSA: The National Cyber Security Alliance (NCSA) today announced that former government cybersecurity expert Kelvin Coleman has been appointed as executive director.
11. Talent - Network Security: Awake Security, a network traffic analysis company, has hired Darktrace and McAfee veterans Randy Cheek as VP of sales and Rajdeep Wadhwa as VP of product management. The Awake Security Platform is a network traffic analysis (NTA) solution designed to help organizations combat sophisticated cyber threats and improve overall visibility.
Continue to page two of two for items 10 to 1.
Welcome to page two, featuring today's items 10 to 1.
10. Talent - Service Provider: BT has named Kevin Brown as managing director of BT Security. He is responsible for the company’s physical and cybersecurity worldwide.
9. Talent: Devo Technology, led by former LogicNow & GFI Software CEO Walter Scott, has hired three security executives, including:
- Julian Waits as General Manager of the Devo Security Business Unit;
- Matt Mosley, Vice President of Products, Cybersecurity; and
- Fred Wilmot, VP of Security Engineering.
Combined, the trio has been involved in nearly every aspect of cybersecurity, from running large-scale security operations teams to building cybersecurity solutions, the company says. Devo's technology collects, enhances and analyzes machine data -- delivering insights for IT, security, and business teams, the company says.
8. Appliances: WatchGuard Technologies has launched version 12.3 of its Fireware operating system for its Firebox Unified Security Platform appliances. Key to this update are added dynamic path selection capabilities that allow organizations to optimize WAN resources across complex, distributed networks while securing branch locations with a UTM platform focused on defense in depth, the company says.
7. APIs - EDR: Cylance says application programming interfaces (APIs) for its endpoint detect and respond offering, CylanceOPTICS, are now available. The APIs pave the way for more integrations involving automated workflows to generate helpdesk tickets, initiate data collection, quarantine files, or launch other tasks in real time, the company says.
6. Distribution - SIEM: Global VAST cybersecurity specialist Exclusive Networks will distribution JASK’s ASOC (Autonomous Security Operations Center) Platform as part of a worldwide agreement. The JASK ASOC platform offers artificial intelligence (AI) and machine learning-based Security Information Event Management (SIEM) for security personnel.
5. MSSP Launch: Several MSP veterans have launched Cythera, an MSSP in Melbourne. Australia. The leadership team previously sold O2 Networks to Telstra for AU$60 million in 2014, according to CRN Australia.
4. Reorganization - Top 100 MSSP: Singtel has pooled the cybersecurity capabilities, technologies and resources of Singtel, Optus, Trustwave and NCS, into a single global corporate identity operating under the Trustwave brand. Trustwave is a Top 100 MSSP. We'll share more details soon.
3. Black Hat Europe 2018: Our live blog of this week’s conference — and complete ongoing coverage of all Black Hat events — is compiled here.
2. M&A - Managed Security: ConnectWise has acquired Sienna Group as part of a managed security partner strategy, MSSP Alert reported this morning.
1. MSSP Pricing Guide: We’ll share managed security pricing tips during our December webcast. Register now to join us.