Each business day MSSP Alert delivers a quick lineup of news, analysis and chatter from across the MSSP, MSP and cybersecurity world.
Reaching Our Inbox:
Send news, tips and rumors to Managing Editor Jim Masters: [email protected]
Today’s MSSP Alert Market News:
1. XDR Integration for MSSPs: Stellar Cyber, a provider of Open XDR software for MSSPs and enterprises, has announced a new integration with Exium and their zero trust SASE platform. This integration makes it easy for enterprise and MSSP users of the Stellar Cyber Open XDR platform to streamline comprehensive cybersecurity investigations. “Working with Stellar Cyber enables Exium’s MSP partners to eliminate tedious manual processes from their cyber investigation workflows, ultimately reducing the risk of a significant breach for their clients,” said David Nuti, chief business development officer at Exium.
2. Industry Recognition: Compliance Scorecard, a governance-as-a-service solution provider for MSPs, announced that its CEO, Tim Golden, has received the CompTIA Community North America Spotlight Award for Cybersecurity Leadership for "his innovative approach and exemplary leadership in the cybersecurity domain."
3. Industry Recognition: Optiv, a cyber advisory and solutions specialist, has been named a Leader in the IDC MarketScape: Worldwide Cybersecurity Consulting Services 2024 Vendor Assessment, a highly respected analysis designed to help end-users identify which providers within the cybersecurity consulting services market can most efficiently help them execute complex transformation projects.
4. Hacker Alert: The Checkmarx Research team recently discovered an attack campaign targeting the software supply chain, with evidence of successful exploitation of multiple victims. These include the Top.gg GitHub organization (a community of over 170,000 users) and several individual developers, Checkmarx said. The threat actors used multiple TTPs in this attack, including account takeover via stolen browser cookies, contributing malicious code with verified commits, setting up a custom Python mirror, and publishing malicious packages to the PyPi registry.
5. Leadership Move: ProcessUnity, a provider of third-party risk management and cybersecurity solutions, has appointed Matt Lindeman as chief customer officer. Lindeman will drive cross-functional efforts to enhance customer experience and help users get the most value out of the ProcessUnity platform, the company said.
6. Industry Recognition: Zscaler, a cloud security specialist, has been named a Leader in the Forrester Wave Security Service Edge Solutions for the first quarter of 2024. Zscaler received the highest possible score in 11 criteria, including digital experience management, threat prevention, user experience, vision, innovation, and partner ecosystem, the company said.
7. Malware Alert: A new large-scale StrelaStealer malware campaign has impacted more than a hundred organizations across the United States and Europe, attempting to steal email account credentials. StrelaStealer was first documented in November 2022 as a new information-stealing malware that steals email account credentials from Outlook and Thunderbird. The malware reportedly uses a polyglot file infection method to evade detection from security software. (Source: Bleeping Computer)
8. Identity Security Release: Nametag, an identity verification platform provider for helpdesks, has launched Nametag Autopilot, a self-service account recovery solution that prevents AI-generated deepfake attacks. Nametag Autopilot prevents social engineering and impersonation attacks while deflecting expensive password and multifactor authentication (MFA) resets to self-service, the company said.
