Orca Security Traces Cloud Vulnerabilities Back to Code
Orca Security today announced it added an ability to trace cloud security risks in production environments back to both the original code that created the issue and the developer that wrote it. Avi Shua, chief innovation officer for Orca Security, said the Cloud to Dev capabilities added to the company’s ...
Read More
Splunk: Cybersecurity Dynamics Rapidly Changing
A survey of 1,520 cybersecurity and IT leaders published today found more than half (52%) reporting their organization suffered a data breach in the past two years, with 62% experiencing monthly unplanned downtime attributable to a cybersecurity incident. The survey, conducted by Enterprise Strategy Group (ESG) on behalf of Splunk, ...
Read More
Sysdig Details Proxyjacking Attack Leveraging Log4j Vulnerability
Sysdig today published a report that described how cybercriminals are exploiting the Log4j vulnerability to gain access to IP addresses that are then sold to entities that resell them. Dubbed proxyjacking, the attacks enable cybercriminals to resell bandwidth to providers of proxyware services that allow someone to hide their physical ...
Read More
NTT Taps Microsoft to Provide MDR Service
NTT Ltd has launched a managed detection and response (MDR) security service based on Microsoft Sentinel, a security information event management (SIEM) platform hosted in the Azure cloud service. The NTT MDR service collects data from any user, device, application and infrastructure platform from any on-premises or cloud computing environment ...
Read More
Survey: Reactionary Cybersecurity is Misaligned With Business Goals
A global survey of 409 cybersecurity and IT decision-makers from companies with at least 250 employees suggested that while there is a lot more attention being paid to aligning cybersecurity strategy with business goals, most organizations are still spending most of their time reacting to events rather than achieving specific ...
Read More
Noname Security Extends Reach of API Security Platform
Noname Security this week extended the reach of its platform for securing application programming interfaces (APIs) to make it easier to discover APIs and visualize the workflows that revolve around them. Specifically, the company has added to the Noname Security Runtime Protection platform an ability to customize discovery and more ...
Read More
Elastic Unfurls Cloud Security Platform for AWS
Elastic today launched a cloud security analytics platform that provides visibility into Amazon Web Services (AWS) environments. The Elastic Search platform is based on the open source search engine platform it developed. Mike Nichols, vice president of product management for Elastic, said the Elastic Search platform provides both cloud security ...
Read More
Spera Unveils Platform for Finding and Tracking Identities
Spera emerged from stealth today to launch a namesake platform that discovers and tracks identities to enable organizations to better enforce zero-trust cybersecurity policies. Fresh from raising $10 million in funding, Spera CEO Dor Fledel said the biggest challenge organizations face today when implementing zero-trust policies is they have no ...
Read More
Skyhawk Security Taps ChatGPT to Augment Threat Detection
Skyhawk Security today revealed it is employing ChatGPT to add generative artificial intelligence (AI) capabilities to its cloud threat detection and response (CDR) platform at no extra charge. Skyhawk Security CEO Chen Burshan said in addition to providing textual explanations of the evolution of a security incident discovered by the ...
Read More
The Chasm Between Cybersecurity Confidence and Actual Ability
A survey of 316 cybersecurity training strategy decision-makers in the UK, U.S, Canada, Germany and Sweden published today found there is a major disconnect in the confidence they have in their teams have in their abilities and their actual abilities. Conducted by Forrester Consulting on behalf of Immersive Labs, a ...
Read More
