MSSP News Alert: 20 March 2017

Each morning MSSP Alert offers readers a quick lineup of news, analysis and chatter from across the MSSP (managed security services provider) ecosystem.

Here’s the lineup for Monday, March 20, 2017:

13. Cybersecurity Risk Detection: Nozomi Networks Inc., which specializes in real-time cybersecurity and operational visibility for industrial control systems (ICS), has launched a new SCADAguardian release. It now features Asset Management and Vulnerability Assessment capabilities. Moreover, Dynamic Learning offers configuration-free deployments, the company claims. The platform targets energy utilities, oil and gas operators and manufacturers that want to monitor control networks for cybersecurity and operational anomalies.

12. IBM Blockchain: IBM Blockchain launched today, setting the stage for developers to potentially build enterprise-class Blockchain applications leveraging Hyperledger Project code. To set the stage for today's launch, IBM unveiled a Blockchain partner ecosystem back in December 2016.

11. IBM Security App Partners: BluVector, which develops machine learning security technology, has launched BluVector for QRadar. The offering leverages IBM’s security intelligence technology to enable security teams to detect and investigate advanced cyber threats more quickly and accurately before harm is done to the organization, BluVector claims. The software is available via IBM's Security App Exchange.

Gary Hayslip
Gary Hayslip
Marcos Vieyra

10. State CISOs Step Down: Two state-level Chief Information Security Officers (CISOs) have resigned. Marcos Vieyra, South Carolina's first cybersecurity chief, has quietly left his post after helping to launch an effort to consolidate the state's digital protection efforts according to Post and Courier. Similarly, Gary Hayslip, who helped make San Diego a leader in cybersecurity over the past four years as the city’s CISO, has left his job to pursue opportunities in the private sector, the San Diego Union Tribune reported.

9. Women in Cybersecurity: Women’s representation in the cybersecurity workforce has remained at 11 percent since 2013, despite the growing shortage of cybersecurity workers worldwide, according to a recent (ISC)2 survey, as reported by MeriTalk. Several associations are working to bridge the IT gender gap. Among the efforts to note: CompTIA's Advancing Women in Technology group.

8. New Keylogger Spyware: A new, but unsophisticated cloud-based keylogger has hit the market, resulting in a small number of cybercriminals attempting to infect businesses and collect keystrokes, system information, stored passwords, screenshots, and game credentials, according to SC Magazine. Known as NexusLogger, the tool has caught the watchful eye of Palo Alto Networks and several other security-centric technology companies.

7. Elections and Cybersecurity: Germany has raised its alert level against against cyber attacks to "heightened readiness" ahead of parliamentary elections, saying government websites are already subjected to daily assault, according to reports, according to The Telegraph...

6. Recent Breaches, Part I:  Virginia Commonwealth University (VCU) Health System recently discovered a data breach potentially impacted over 2,700 patients, according to an announcement in the Richmond Times-Dispatch.

5. Recent Breaches, Part II: ABTA, the UK travel trade association, says its website suffered a data security incident affecting 43,000 individuals, according to Tnooz.

4. Recent Breaches, Part III: The medical records of 26 million patients are embroiled in a major security breach amid warnings that the IT system used by thousands of Great Britain citizens is not secure. Indeed, the Information Commissioner is investigating concerns that records held by 2,700 practices - one in three of those in England - can be accessed by hundreds of thousands of strangers, according to The  Telegraph.

3. Recent Breaches, Part IV: A Secret Service agent's laptop was stolen from an agent's vehicle parked in front of a New York residence, law enforcement sources confirmed to Fox News. Security officials attempted to downplay the incident as a petty crime rather than some sort of strategic theft. The laptop's data is encrypted and the feds can wipe the systems' data once it connects to the Internet, sources insisted.

2. Managed Security Services on AWS, Azure: Earthling Security has launched EarthlingCloud, a managed services platform designed to host web applications within a secured cloud environment. The platform, which runs on Amazon Web Services and Microsoft Azure, comes bundled with security operations and compliance services. Earthling also specializes in compliance as a service.

1. Countdown to Launch: Yup. We wrote this blog on Monday, March 20 — quite a bit before MSSP Alert’s anticipated launch day in mid-2017.

Joe Panettieri

Joe Panettieri is co-founder & editorial director of MSSP Alert and ChannelE2E, the two leading news & analysis sites for managed service providers in the cybersecurity market.