Each business day MSSP Alert delivers a quick lineup of news, analysis, and chatter from across the MSSP, MSP, and cybersecurity world.
Reaching Our Inbox:
Send news, tips and rumors to Managing Editor Jim Masters: [email protected]
Today’s MSSP Alert Market News:
Call Out to All MSSPs and MSPs Providing Election Security During 2024: Election security is paramount to free and fair elections, and MSSP Alert endeavors to cover this important subject. So, if you are an MSSP, MSP or cybersecurity provider involved with election security at a client level or offer a specific service — or know of a company providing such services — we would like to hear from you. We hope to interview your experts about the importance of election security and delve into your tools, services and people who are helping protect elections from cyberattacks and the electorate from misinformation, be it at a local, county, state or federal level, no matter the country. We understand that there may be certain sensitive information involved, so know that we will respect those matters. Please contact MSSP Alert Managing Editor Jim Masters. Thank you for helping us cover this important subject for our readership!
1. BeyondTrust Acquires Entitle: BeyondTrust, a specialist in intelligent identity and access security, has reached a definitive agreement to acquire Entitle, a provider of a privilege management solution that discovers, manages and automates just-in-time (JIT) access and modern identity governance and administration (IGA) across the entire cloud estate. This is technology M&A deal number 99 that MSSP Alert and sister site ChannelE2E have covered so far in 2024. See more than 2,000 technology M&A deals for 2024, 2023, 2022, 2021, and 2020 listed here.
2. Armis Buys Silk Security: Armis, an asset intelligence cybersecurity company, has acquired Silk Security, a platform provider for cyber risk prioritization and remediation for $150 million. Armis will integrate the Silk Security platform into the Armis Centrix AI-based Vulnerability Prioritization and Remediation solution to provide security teams with a consolidated view of security findings that encompass all sources of data from on-premises devices to cloud compute, code and application security tools, and fully manage and automate remediation, the companies said. This is technology M&A deal number 100 that MSSP Alert and sister site ChannelE2E have covered so far in 2024. See more than 2,000 technology M&A deals for 2024, 2023, 2022, 2021, and 2020 listed here.
3. MSP Partnership Expands: Acumen, an engineer-powered cybersecurity service provider, is expanding its partnerships with MSPs and value-added resellers (VARs). Acumen is a specialist MSSP that has partnerships with Recorded Future, CrowdStrike, Elastic, Fortinet and Barracuda. Its services include a 24/7 SOC, managed extended detection and response (MXDR), security information and event management (SIEM), training and consultancy.
4. Funding Round: Miggo, a cybersecurity startup offering an application detection and response (ADR) platform, has secured $7.5 million in seed funding led by YL Ventures with the participation of CCL (Cyber Club London), cybersecurity leaders from Elastic and Everon and former chief information security officers of Google, Zscaler and Nike. Miggo's ADR platform addresses a critical gap in application security by enabling security teams to detect and respond to targeted application attacks in real-time, the company said.
5. Russian Threat Group Research: Splunk has published new research related to the infamous Russian state-sponsored threat group, APT29, disclosing that the group is responsible for targeting German political organizations, a new backdoor known as WINELOADER, toward the end of February 2024. Since the operation, Splunk’s Threat Research Team has dug into the tactics and evasion techniques used including exploring the WINELOADER backdoor capabilities and analyzing the HTA file responsible for the initial stages of the infection chain, the company said.
6. Security Partnership: Hexagon’s Asset Lifecycle Intelligence division has formed a strategic partnership with Dragos, an operational technology (OT) cybersecurity specialist. The technical partnership focuses on integrating the complementary OT cybersecurity capabilities of the Dragos Platform and Hexagon’s PAS Cyber Integrity to provide customers with enhanced inventory data, comprehensive configuration management and intrusion detection and threat management to protect businesses operating in multiple critical infrastructure sectors, the companies said.
7. Password Protection Product Release: Keeper Security, a provider of zero-trust and zero-knowledge cybersecurity software protecting passwords, passkeys, privileged access, secrets and remote connections, has added a passphrase generator to Keeper Web Vault. The release includes an update to the existing password generator, which provides users with new options to meet specific password requirements. In addition to being able to include uppercase letters, numbers and symbols, users can now select specific symbols to include or omit, based on the requirements of the website they're creating the password for, the company said.
8. AI Security Launch: Prompt Security, a unified platform provider for generative AI (GenAI) security, has launched an open-source tool, the "Prompt Fuzzer." This interactive tool empowers GenAI applications developers to evaluate and enhance the resilience and safety of their system prompts in a user-friendly way, the company said. The Prompt Fuzzer, powered by a Large Language Model, tailors its attack simulations to each application's specific configuration and subject matter area. Users also benefit from access to an "interactive playground" where they can freely iterate and test their system prompts.
9. New Security Product Line Debuts: Kaspersky has introduced its new flagship product line, Kaspersky Next, combining endpoint protection with the transparency and speed of endpoint detection and response (EDR) alongside the visibility and powerful tools of extended detection and response (XDR). Customers can now choose one of three product tiers tailored to their business requirements, the complexity of their IT infrastructure and their available resources, Kaspersky said.
