Each morning MSSP Alert broadcasts a quick lineup of news, analysis and chatter from across the global managed security services provider, SOC (security operations center) and IT outsourcing ecosystem.
Here’s the lineup for Tuesday, February 27, 2018:
11. Point of Sale Malware: Forcepoint recently discovered Point of Sale malware disguised as a LogMeIn service pack. It's designed to steal magnetic stripe payment card data -- a hallmark of PoS malware, Forcepoint notes. The phishing-related malware certainly mimics LogMeIn software updates, but the software is in no way related to LogMeIn. According to a statement from that company:
"This link, file or executable is not provided by LogMeIn and updates for LogMeIn products, including patches, updates, etc., will always be delivered securely in-product. You will never be contacted by us with a request to update your software that also includes either an attachment or a link to a new version or update."
10. Hacked: Some UK think tanks were hacked by China-based groups last year, according to a Crowdstrike investigation...
9. Momentum: Palo Alto Networks stock jumped more than 5 percent yesterday after the cybersecurity company delivered strong Q2 revenue and forecast full-year results that are stronger than Wall Street's previous expectations. Revenue in the three months ended in January rose more than 20%, year over year, to $542 million, Barron's notes.
8. IoT: Blackpoint Cyber has launched an IoT module for SNAP-Defense; providing security for IoT applications such as Smart Building Systems, Industrial Control Systems, and Operations Technology including factory and logistics control systems. The system can monitor building automation, alarm systems, security cameras, lighting controls, irrigation controls, access controls, and more.
7. Endpoint Security: Sophos has unveiled Sophos Mobile 8, the latest version of its Unified Endpoint Management (UEM) and mobile security solution. This new version lets system administrators manage and secure corporate-owned and personal Mac, Windows, and mobile endpoints in the cloud-based Sophos Central management platform, the company says.
6. McAfee & Alexa: McAfee is preparing to blend home security, routers and Amazon Alexa voice-activated control services...
5. Cyber Insurance: Willis Towers Watson, a global advisory, broking and solutions company, has launched Willis Towers Watson Aerospace Cyber Guard, a tailored cyber insurance solution for the general aviation industry.
4. M&A - Phishing Mitigation: A private equity group has acquired PhishMe and rebranded the company as Cofense. The deal values the company at $400 million.
3. M&A - SOC Automation: Splunk has acquired Phantom Cyber Corp. for $350 million. Phantom develops a security orchestration, automation and response platform. The deal pushes Splunk deeper into the Security Operations Center software market. Phantom most recently partnered with SentinelOne to integrate their endpoint and SOC offerings. Related: Splunk .conf18 is scheduled for October in Orlando.
2. Partnership - Ransomware: Proficio and CyberSight are partnering to promote Proficio’s 24x7 managed cybersecurity services and CyberSight’s RansomStopper -- providing customers with enhanced endpoint detection and response services that will specifically detect and prevent ransomware attacks in real-time, the companies says. Related: Proficio was a Top 100 MSSP for 2017. The 2018 survey is open through August 10.
1. SIEM & SOC Services: StratoZen, a master MSSP providing cybersecurity solutions for MSPs and MSSPs, has upgraded its SIEM-as-a-Service and SOC-as-a-Service offerings. We'll share more details later today. Related: StratoZen unveiled the enhancements at the Fortinet Accelerate 18 conference in Las Vegas.