Cyber Security Informer

MY TAKE: RSAC 2024’s big takeaway: rules-based security is out; contextual security is taking over

The Last Watchdog

MAY 13, 2024

See, categorize, control It struck me that each of the security vendors I spoke with were caught up in the trend of prioritizing contextual security, as well. Related: The power of everyman conversing with AI Blinken That’s a tall order. Post Covid 19, work forces and supply chains have become highly distributed.

Artificial Intelligence

Artificial Intelligence Technology Accountability DNS

Does the World Need Cloud Detection and Response (CDR)?

Anton on Security

JUNE 23, 2022

Naturally, a SIEM ( cloud-native or otherwise ) can do cloud threat detection off cloud provider logs, support alert triage and investigations. Similarly, broad cloud security vendors (all those CWPPs and CNAPPs) promise to “secure your cloud” and that often includes detecting threats. Should it exist as a market?

Threat Detection

Threat Detection Marketing Technology

RSAC Fireside Chat: Keeping persistent email threats at bay requires deeper, cloud-layer vigilance

The Last Watchdog

MAY 11, 2023

Related: The need for timely training At RSA Conference 2023 , I learned all about a new category of email security — referred to as integrated cloud email security ( ICES ) – that is helping companies more effectively keep email threats in check. LW provides consulting services to the vendors we cover.)

Security Awareness

Security Awareness Phishing Internet Internet

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

FIRESIDE CHAT: ‘Attack surface management’ has become the centerpiece of cybersecurity

The Last Watchdog

JULY 27, 2022

A new category of attack surface management tools and services is gaining traction and fast becoming a must-have capability. LW provides consulting services to the vendors we cover.). Post Covid 19, attack surface management has become the focal point of defending company networks.

Digital transformation

Digital transformation Cybersecurity CISO Software

The Best 10 Vendor Risk Management Tools

Centraleyes

MARCH 25, 2024

Let’s discuss an acronym reshaping the business world: Vendor Risk Management , or VRM. In our interconnected world, our security is only as strong as our weakest link, and the third-party vendors we choose are essential links in our business chains. Times have changed, and VRM applies to everyone, not just the big players.

Risk

Risk Data collection Architecture Government

Best Cybersecurity and IT Outsourcing Options

eSecurity Planet

AUGUST 1, 2023

To ensure robust IT and security capabilities, most organizations turn to outsourcing to provide a wide variety of solutions to satisfy their even wider variety of outsourcing needs. Unfortunately, some executives will believe that simply engaging an IT outsourcing vendor will deliver improved security and internal IT department performance.

Cybersecurity

Cybersecurity Cloud Migration Firewall Penetration Testing

Malwarebytes named leader across six endpoint security categories, marking its ease of use, in G2 Fall 2023 results

Malwarebytes

SEPTEMBER 18, 2023

The peer-to-peer review source G2 has released their Fall 2023 reports, ranking Malwarebytes as a leader across a number of endpoint protection categories. Badges are awarded to products that receive the highest overall ratings among certain categories including most satisfied customers. How did Malwarebytes perform in G2 Fall 2023?

Marketing

Marketing Antivirus Insurance Cyber threats

Anitian Named a Vendor in Gartner Hype Cycle for Agile and DevOps

Security Boulevard

JULY 20, 2021

Anitian cited as a Sample Vendor in the Continuous Compliance Automation (CCA) category, as DevOps and DevSecOps adoption grows. The post Anitian Named a Vendor in Gartner Hype Cycle for Agile and DevOps appeared first on Anitian.

GUEST ESSAY: ‘CyberXchange’ presents a much-needed platform for cybersecurity purchases

The Last Watchdog

OCTOBER 19, 2020

alone, in fact, there are more than 5,000 cybersecurity vendors. For organizations looking to improve their security posture, this is causing confusion and vendor fatigue, especially for companies that don’t have a full time Chief Information Security Officer. The vendors are well-intentioned.

eCommerce

eCommerce Cybersecurity B2B Marketing

Hidden Biases in Cybersecurity Reviews – And How to Use Them

eSecurity Planet

SEPTEMBER 8, 2023

Sample size calculators can provide an estimate of the minimum sample size for surveys or the minimum number of organizations to interview for reviews to have high confidence in the answer and a low error rate. Ferreting out those biases is important if we’re going to find tools that will make a difference in our IT environments.

Cybersecurity

Cybersecurity Marketing Technology Energy and Utilities

BrandPost: The evolution of security service edge (SSE) and zero trust

CSO Magazine

APRIL 27, 2023

With the recent publication of Gartner’s updated Magic Quadrant for Security Service Edge , we have been asked by several CXOs about this fast-growing solution category and how it relates to zero trust. There are practical zero trust implementations from vendors, like Zscaler, that have solutions with zero trust frameworks at their core.

Architecture

Architecture Mobile Technology

SHARED INTEL: The expect impacts of Pres. Biden’s imminent National Cybersecurity Strategy

The Last Watchdog

FEBRUARY 14, 2023

Here’s a look at some broad themes to expect and how they will impact businesses: •New vendor responsibilities. Increased federal regulation puts more responsibility on hardware and software vendors compared to the customers who ultimately use their products. Previous U.S. presidents have tried that without getting the desired effects.

Cybersecurity

Cybersecurity Marketing Telecommunications Software

Thales Wins Big in 2023

Thales Cloud Protection & Licensing

NOVEMBER 1, 2023

Google Cloud Technology Partner of the Year Award Thales was selected as the Google Cloud Technology Partner of the Year in the Security – Data Protection category. Powered by Channel Partner Insights, the MSP Innovation Awards Europe celebrates the best of the managed services provider market.

Marketing

Marketing Cybersecurity Technology CISO

Black Hat Fireside Chat: Easy come, easy go access strengthens ‘Identity Threat Detection & Response’

The Last Watchdog

AUGUST 4, 2023

With Black Hat USA 2023 ramping up in Las Vegas next week, cybersecurity startup Trustle is championing a new product category—Identity Threat Detection & Response ( ITDR )—which aims to enhance the capabilities of legacy IAM solutions. LW provides consulting services to the vendors we cover.)

Threat Detection

Threat Detection CISO Internet Internet

RSA 2022 Musings: The Past and The Future of Security

Anton on Security

JUNE 10, 2022

Economic challenges notwithstanding, there was definitely a lot of excitement in the air (not sure that the freshly laid off employees of vendors with huge expensive booths would relate to that however…) So, what was the theme that came to me as I was wandering the halls? These vendors also have huge booths!

VPN

VPN Marketing Firewall Passwords

Do You Trust Your SIEM?

Anton on Security

OCTOBER 21, 2021

With cloud SIEM, you trust the vendor not to lose, disclose, confuse or otherwise corrupt the data they store for you. There is also trust that the vendor won’t use the data for anything “off-label” and won’t let anybody else do it. They do not?—?en en masse?—?trust If there is ML … well, let’s not even go there.

Passwords

Passwords Threat Detection Cybersecurity

Detection as Code? No, Detection as COOKING!

Anton on Security

JUNE 3, 2022

Part 1 Key Questions Here on the blog I touched the subject of detection engineering quite a few times, yet I realize that many organizations prefer to rely on their security tool vendor content for threat detection. Part 3 Brief Review of Detection Tool Categories For a good number of years , I’ve looked at SIEM customers using?—?or

Threat Detection

Threat Detection Engineering Advertising Technology

How to Find & Choose IT Outsourcing Services

eSecurity Planet

AUGUST 4, 2023

However, buyers in most organizations don’t have the expertise to find and evaluate potential vendors. However, a search for IT outsourcing, MSP, VAR, or a similar sub-category will produce many more results about the topic than potential candidates.

Cybersecurity

Cybersecurity Penetration Testing Engineering Government

Top Cybersecurity Companies for 2021

eSecurity Planet

AUGUST 13, 2021

To help you navigate this growing marketplace, we provide our recommendations for the world’s leading cybersecurity technology providers, based on user reviews, product features and benefits, vendor information, analyst reports, independent security tests, and use cases. The Best Cybersecurity Companies. Syxsense Secure.

Cybersecurity

Cybersecurity Firewall Marketing Encryption

Best Small and Medium-sized Business (SMB) Vulnerability Scanning Tools

eSecurity Planet

MARCH 9, 2023

For budget-constrained organizations with high technical capabilities, Open Source Vulnerability Scanning tools can provide low-cost options for organizations of all sizes. Several vendors offer low and no-cost tiers for their scanning tools that enable the smallest organizations to gain the benefits of commercial scanning products.

Software

Software Small Business Engineering Penetration Testing

Steps Forward: Can ‘CNAPP’ solutions truly unify cloud, on-premises best cybersecurity practices?

The Last Watchdog

JULY 17, 2023

A fledgling security category referred to as Cloud-Native Application Protection Platforms ( CNAPP ) is starting to reshape the cybersecurity landscape. Newer vendors now primarily pitching CNAPP services include Uptycs , Runecast and Ermetic. Newer vendors now primarily pitching CNAPP services include Uptycs , Runecast and Ermetic.

Cybersecurity

Cybersecurity Software Risk Internet

The Weakest Link: Managing Supply Chain Risk

Approachable Cyber Threats

DECEMBER 21, 2023

Category Cybersecurity Fundamentals, Third Party Risk Risk Level In the interconnected web of modern business ecosystems, supply chain risks have emerged as insidious threats, leaving even the most vigilant organizations vulnerable to devastating cyber breaches. Why does it seem like supply chain attacks are increasing?

Risk

Risk Cybersecurity Software Government

STEPS FORWARD Q&A: Will ‘proactive security’ engender a shift to risk-based network protection?

The Last Watchdog

OCTOBER 4, 2023

These tools provide visibility, assessment, and control of an organization’s attack surface and an understanding of viable attack paths based on asset exposures and the effectiveness of deployed security controls. Something simply must be done to slow, and ultimately reverse, attack surface expansion. Is that fair?

Risk

Risk Marketing Software Network Security

CTEM: The First Proactive Security Innovation in 20 Years

NopSec

FEBRUARY 13, 2024

Brad LaPort , a veteran Gartner analyst and I were on a content project, talking about why the market was missing out on a new category to encapsulate the disparate exposure data and derive actionable insights. We were debating about what we should call this new category. Is it Cyber Exposure Management? Threat Exposure Management?

Marketing

Marketing Risk Digital transformation Software

GUEST ESSAY: Can Apple’s pricey ‘Business Essentials’ truly help SMBs secure their endpoints?

The Last Watchdog

FEBRUARY 8, 2022

Today’s operating system battleground has long been defined by the warfare between the top three players—Microsoft’s Windows, Google’s Android, and Apple’s iOS. Related: Co ok vs. Zuckerberg on privacy. What would unfold next with Fleetsmith on their team was the most anticipated question. A pricey play.

Marketing

Marketing Mobile Small Business Backups

News alert: Study finds law firms targeted — ALSO Cloud UK urges them to shore up cyber hygiene

The Last Watchdog

OCTOBER 11, 2023

Investing in cyber defences and training staff to improve policies and security procedures is key, but also ensuring that agreements with MSPs and other third-party vendors include appropriate cyber security and data protection to safeguard digital assets is a responsibility that cannot be neglected. Emmen, Switzerland, Oct.

Data breaches

Data breaches Social Engineering Cyber threats Technology

MITRE ATT&CK Evaluations 2023: Palo Alto, Microsoft, CrowdStrike & Cybereason Lead the Way

eSecurity Planet

SEPTEMBER 22, 2023

MITRE Engenuity has released its 2023 ATT&CK evaluations, examining how top cybersecurity vendors detect and prevent sophisticated cyberthreats. This year’s MITRE analysis tested vendors’ ability to detect two scenarios called SNAKE and CARBON. For vendors who skipped the Linux tests, that number drops to 132.

Cybersecurity

Cybersecurity Security Defenses Marketing Technology

Patch Management vs Vulnerability Management: What’s the Difference?

eSecurity Planet

APRIL 28, 2023

Patch management is the subset of vulnerability management that applies to third-party vendors and updates third-party systems using vendor-issued patches. Third-party vendor systems include Operating Systems (OS), firmware (software installed on hardware), and applications. What Is Vulnerability Management?

Penetration Testing

Penetration Testing IoT Firmware Software

Hundreds of network operators’ credentials found circulating in Dark Web

Security Affairs

JANUARY 30, 2024

As an example of compromised accounts, Resecurity outlined exposed access credentials belonging to a major data center and one of the largest vendors providing international-scale network telephony connectivity to governmental and national telecom providers in Africa.

Engineering

Engineering Passwords Telecommunications Accountability

News alert: Simbian launches with $10M to build autonomous, GenAI-powered security platform

The Last Watchdog

APRIL 11, 2024

Most businesses have a mix of software from multiple vendors and in-house software. The co-pilot continuously observes user actions and environments, and learns to autonomously perform increasingly sophisticated tasks on its own with time. Talent is getting scarce, and at the same time threat vectors are getting more complex.

CSO

CSO Marketing Risk CISO

Anitian Named a Vendor in Gartner Hype Cycle for Enterprise Architecture

Security Boulevard

AUGUST 27, 2021

Link to release via PR Newswire PORTLAND, Oregon — August 27, 2021 — Anitian, the leading cloud application security and compliance automation provider, has been identified in the latest Gartner Hype Cycle for Enterprise Architecture, 2021, cited as a Sample Vendor in the Continuous Compliance Automation (CCA) category.

Architecture

Architecture Risk

Migrate Off That Old SIEM Already!

Anton on Security

FEBRUARY 5, 2024

The authors have seen hundreds of SIEM migrations as practitioners, analysts, and vendors over multiple decades. We’ll divide this list into categories and sprinkle in lessons we’ve learned from the trenches throughout. This is cross-posted from Google Cloud Community site , and written jointly with Dave Herrald. Frankly no!

Threat Detection

Threat Detection Engineering Artificial Intelligence Risk

Note to Self: Create Non-Exhaustive List of Competitors

Krebs on Security

APRIL 20, 2021

Some have argued that Gartner is a kind of private social network, in that a significant portion of Gartner’s competitive position is based on its interaction with an extensive network of software vendors and buyers. Mine was learning that KrebsOnSecurity is listed as a restricted competitor by Gartner Inc.

Marketing

Marketing Technology Software Cybercrime

Nmap Vulnerability Scanning Made Easy

eSecurity Planet

FEBRUARY 7, 2022

The idea behind the Scanning Made Easy project from the National Cyber Security Centre (NCSC) and its i100 industry partnership is to provide a collection of Nmap scripts to users, such as sysadmins, for detecting system vulnerabilities. The scripts should provide more accessible detection and remediation. Getting Started with Nmap.

Penetration Testing

Penetration Testing Firewall Engineering Government

RSAC insights: ‘SaaS security posture management’ — SSPM — has emerged as a networking must-have

The Last Watchdog

JUNE 2, 2022

SaaS vendors, of course, readily adopted the shared responsibility model pushed out by the IT infrastructure giants. Companies now reach for SaaS apps for clerical chores, conferencing, customer relationship management, human resources, salesforce automation, supply chain management, web content creation and much more, even security.

Cloud Migration

Cloud Migration CISO Technology Security Awareness

GUEST ESSAY — How threat detection services for SMBs are continuing to evolve and improve

The Last Watchdog

JANUARY 22, 2023

Hence, using a threat prevention and detection solution that doesn’t disrupt day-to-day operations while providing early warning and stopping potential threats before they escalate is essential. As a result, there is an increased demand for threat detection solutions that can provide faster and actually effective responses to threats.

Threat Detection

Threat Detection Artificial Intelligence Marketing Phishing

Managed IT Service Providers (MSPs): A Fast Way to Secure IT

eSecurity Planet

AUGUST 9, 2023

Managed service providers, also known as MSPs, offer organizations of all sizes a way to gain fractional expertise and capabilities unrelated to their core activities without the need for a huge upfront investment. Corporations, nonprofit organizations, utilities, and all manners of government agencies use managed service providers.

Software

Software Penetration Testing Cybersecurity Risk

Some Cybersecurity Startups Still Attract Funding Despite Headwinds

eSecurity Planet

JUNE 14, 2022

But it is also a large category and the latest funding will certainly help drive the growth. Web3 is one of the buzziest categories in technology today. With the plunge in tech stocks and the freeze in the IPO market, the funding environment for cybersecurity startups has come under pressure. billion on a quarter-over-quarter basis.

Cybersecurity

Cybersecurity Marketing Digital transformation Technology

Managed IT Service Providers (MSPs): A Fast Way to Secure IT

eSecurity Planet

AUGUST 9, 2023

Managed service providers, also known as MSPs, offer organizations of all sizes a way to gain fractional expertise and capabilities unrelated to their core activities without the need for a huge upfront investment. Corporations, nonprofit organizations, utilities, and all manners of government agencies use managed service providers.

Software

Software Penetration Testing Cybersecurity Risk

Malwarebytes recognized as endpoint security leader by G2

Malwarebytes

FEBRUARY 12, 2023

G2 has released their Winter 2023 reports, ranking Malwarebytes as the leader across a number of endpoint protection categories. Based on verified customer reviews, Malwarebytes has been ranked #1 over top EDR vendors for endpoint malware and antivirus protection, detection and remediation of web-based threats, product usability, and more.

Small Business

Small Business Marketing Antivirus Malware

SW Labs | Overview: Attack Surface Management

SC Magazine

APRIL 22, 2021

In short, products in this category aim to catalogue and help manage an organization’s exposed assets. Our goal is to clearly define it as a category and provide useful context for the individual product reviews that accompany this report. To see specific methodology used for the reviews in this category, click here.

Penetration Testing

Penetration Testing Marketing Internet Internet

For an Indepth Look at CIAM, Read the Forrester Wave™

Security Boulevard

NOVEMBER 10, 2022

Forrester researched, analyzed, and scored customer identity and access management (CIAM) vendors based on a range of 22 criteria that represent important capabilities for enterprises evaluating CIAM for themselves. The research is intensive, including a detailed questionnaire, hours of live demos, multiple briefings, and customer interviews.

Authentication

Authentication Marketing Healthcare Engineering

Malwarebytes vs Bitdefender

eSecurity Planet

FEBRUARY 11, 2022

Both vendors share a number of the same solution capabilities for potential clients, meaning there’s plenty to compare in terms of malware detection and analysis, supported endpoints, and incident response. Malwarebytes EPP solution provides advanced malware detection and endpoint protection for organizations small and large.

Antivirus

Antivirus Mobile Threat Detection Malware

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

The Last Watchdog

JANUARY 30, 2019

million patients when hackers gained unauthorized access to databases operated by a third-party billing vendor. One might assume top-tier financial services firms and healthcare vendors would have solved third-party cyber exposures by now. Late last year, Atrium Health disclosed it lost sensitive data for some 2.65 Uphill battle.

Cyber Risk

Cyber Risk Risk Financial Services Banking

MY TAKE: RSAC 2024’s big takeaway: rules-based security is out; contextual security is taking over

Does the World Need Cloud Detection and Response (CDR)?

Webinars

Trending Sources

RSAC Fireside Chat: Keeping persistent email threats at bay requires deeper, cloud-layer vigilance

Webinars

FIRESIDE CHAT: ‘Attack surface management’ has become the centerpiece of cybersecurity

The Best 10 Vendor Risk Management Tools

Best Cybersecurity and IT Outsourcing Options

Malwarebytes named leader across six endpoint security categories, marking its ease of use, in G2 Fall 2023 results

Anitian Named a Vendor in Gartner Hype Cycle for Agile and DevOps

GUEST ESSAY: ‘CyberXchange’ presents a much-needed platform for cybersecurity purchases

Hidden Biases in Cybersecurity Reviews – And How to Use Them

BrandPost: The evolution of security service edge (SSE) and zero trust

SHARED INTEL: The expect impacts of Pres. Biden’s imminent National Cybersecurity Strategy

Thales Wins Big in 2023

Black Hat Fireside Chat: Easy come, easy go access strengthens ‘Identity Threat Detection & Response’

RSA 2022 Musings: The Past and The Future of Security

Do You Trust Your SIEM?

Detection as Code? No, Detection as COOKING!

How to Find & Choose IT Outsourcing Services

Top Cybersecurity Companies for 2021

Best Small and Medium-sized Business (SMB) Vulnerability Scanning Tools

Steps Forward: Can ‘CNAPP’ solutions truly unify cloud, on-premises best cybersecurity practices?

The Weakest Link: Managing Supply Chain Risk

STEPS FORWARD Q&A: Will ‘proactive security’ engender a shift to risk-based network protection?

CTEM: The First Proactive Security Innovation in 20 Years

GUEST ESSAY: Can Apple’s pricey ‘Business Essentials’ truly help SMBs secure their endpoints?

News alert: Study finds law firms targeted — ALSO Cloud UK urges them to shore up cyber hygiene

MITRE ATT&CK Evaluations 2023: Palo Alto, Microsoft, CrowdStrike & Cybereason Lead the Way

Patch Management vs Vulnerability Management: What’s the Difference?

Hundreds of network operators’ credentials found circulating in Dark Web

News alert: Simbian launches with $10M to build autonomous, GenAI-powered security platform

Anitian Named a Vendor in Gartner Hype Cycle for Enterprise Architecture

Migrate Off That Old SIEM Already!

Note to Self: Create Non-Exhaustive List of Competitors

Nmap Vulnerability Scanning Made Easy

RSAC insights: ‘SaaS security posture management’ — SSPM — has emerged as a networking must-have

GUEST ESSAY — How threat detection services for SMBs are continuing to evolve and improve

Managed IT Service Providers (MSPs): A Fast Way to Secure IT

Some Cybersecurity Startups Still Attract Funding Despite Headwinds

Managed IT Service Providers (MSPs): A Fast Way to Secure IT

Malwarebytes recognized as endpoint security leader by G2

SW Labs | Overview: Attack Surface Management

For an Indepth Look at CIAM, Read the Forrester Wave™

Malwarebytes vs Bitdefender

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

Stay Connected