Cybersecurity daily news, MSSP, Breach and attack simulation, Mergers and Acquisitions, Zero trust, SOC, Cloud Security

MSSP Market News: Midnight Blizzard, Sisense Compromise

(Getty Images)

Each business day MSSP Alert delivers a quick lineup of news, analysis, and chatter from across the MSSP, MSP, and cybersecurity world.

Reaching Our Inbox: 
Send news, tips and rumors to Managing Editor Jim Masters: [email protected]

Today’s MSSP Alert Market News:

1. Microsoft breach update from CISA - The U.S. Cybersecurity and Infrastructure Security Agency said Russian government-backed hackers have used their access to Microsoft's  email system to steal correspondence between government officials and the tech giant. Microsoft said in March that it was still wrestling with the intruders, which it nicknamed "Midnight Blizzard." CISA did not name agencies that have been impacted. 

2. Data vendor compromise - Data analytics company Sisense is responding to a recent compromise, according to a CISA alert. CISA said it is collaborating with private industry partners to respond. It advises affected companies to reset credentials and secrets potentially exposed to, or used to access, Sisense services. It also asks organizations to investigate and report to CISA any suspicious activity involving credentials potentially exposed to, or used to access, Sisense services.

3. Chipmaker breach -  Computer chipmaker Nexperia, which is headquartered in the Netherlands and owned by China's Wingtech , has been hacked by cyber criminals who have stolen large amounts of sensitive information, Dutch broadcaster RTL reported on Friday. (Source: Reuters)

4. Optimizing SOC for the cloud - Palo Alto Networks has launched new capabilities for Cortex XSIAM to secure the cloud. The enhancements natively integrate cloud-specific security technologies in one unified solution, optimizing Cortex XSIAM as a Security Operation Center (SOC) platform for the cloud. 

5. OT security acquisition - Zscaler has signed an agreement to acquire Airgap Networks, which provides agentless segmentation for enterprise IT and OT environments. With this acquisition, Zscaler will combine its Zero Trust SD-WAN with Airgap to extend the Zero Trust Exchange to protect east-west traffic in branch offices, campuses, factories and plants with critical OT infrastructure.  The company said the move will eliminate the need for east-west firewalls, NACs and microsegmentation to deliver greater operational simplicity.

6. Cloud security acquisition - Cloud security provider Wiz has acquired New York-based startup Gem Security. Wiz has a valuation of $10 billion and $900 million raised to date and offers a Cloud Native Application Protection Platform (CNAPP). The acquisition advances Wiz's Cloud Detection and Response (CDR) capabilities.

Jessica C. Davis

Jessica C. Davis is editorial director of CyberRisk Alliance’s channel brands, MSSP Alert, MSSP Alert Live, and ChannelE2E. She has spent a career as a journalist and editor covering the intersection of business and technology including chips, software, the cloud, AI, and cybersecurity. She previously served as editor in chief of Channel Insider and later of MSP Mentor where she was one of the original editors running the MSP 501.