Security News > 2020 > September

75% of AppSec practitioners and 49% of developers believe there is a cultural divide between their respective teams, according to ZeroNorth. Understanding the cultural divide and its implications Developer and AppSec practitioners don't agree on which function is responsible for the security of applications.

This is especially alarming during a period of unprecedented global disruption, as 50% of infosec professionals agree that the increase of cyberwarfare will be detrimental to the economy in the next 12 months. CISOs and infosec professionals however are shoring up their defenses - with 51% and 48% respectively stating that they believe they will need a strategy against cyberwarfare in the next 12-18 months.

Qualys announced the immediate availability of Qualys Multi-Vector EDR. Taking a new multi-vector approach to Endpoint Detection and Response, Qualys now brings the unified power of its highly scalable cloud platform to EDR. "Qualys Multi-Vector EDR provides our Infosec team with actionable visibility into our endpoints in terms of detecting malicious hashes provided by intelligent agencies as well as detecting potential malicious attacks through authorized processes, to keep our company assets secure." "Unfortunately, not all organizations have such a focus. Nevertheless, weaving in threat intelligence enables Qualys to combine in-house context and vulnerability management-driven prioritization with external context, representing an opportunity to achieve something greater than the majority of the market to date," said Mark Child, research manager, European Security, IDC. "We are proud to deliver Multi-Vector EDR to customers and extend into the detection and response market," said Philippe Courtot, chairman and CEO of Qualys.

Ordr announced the availability of the Ordr IoT Discovery Program to uncover shadow IoT devices and their corresponding risks with a turnkey solution that takes minutes to deploy. The Ordr IoT Discovery Program is a complete kit-cloud-managed IoT sensor and Ordr Core software - to get organizations up and running within minutes, not weeks.

As ransomware attacks against critical infrastructure continue to spike in recent months, cybersecurity researchers have uncovered a new entrant that has been actively trying to conduct multistage attacks on large corporate networks of medical labs, banks, manufacturers, and software developers in Russia. The ransomware gang, codenamed "OldGremlin" and believed to be a Russian-speaking threat actor, has been linked to a series of campaigns at least since March, including a successful attack against a clinical diagnostics laboratory that occurred last month on August 11.

Vertiv introduced Vertiv Environet Alert, a new software offering that brings enterprise-level infrastructure monitoring and management capabilities to smaller data centres and edge facilities. Available globally, Vertiv Environet Alert is affordable and easy to use, eliminating the two most common barriers to the deployment of monitoring and management tools in these types of environments.

Today's enterprise architects are not only responsible for understanding their organization as-is, but also planning for the future. Being able to efficiently model the future is foundational to articulating, analyzing, optimizing, regulating and even anticipating the next wave of change.

Edgecore Networks announced the launch of MLTG-Series, a 60 GHz mmWave PTP/PTMP solution that can deliver multi-gigabit speeds. The MLTG-Series solution incorporates Terragraph, Facebook Connectivity's 802.11ay-based gigabit wireless technology designed to deliver fiber-like speeds over the air at a significantly lower cost and faster time to market than that of trenched fiber.

CloudBees announced a robust new set of DevSecOps capabilities for CloudBees CI and CloudBees CD. The new capabilities enable customers to perform early and frequent security checks and ensure that security is an integral part of the whole software delivery pipeline workflow without sacrificing speed or increasing risk. With CloudBees CI and CloudBees CD solutions, users get access to several layers of security within the software delivery process.

NXLog announces the first minor release in the new major version of NXLog Enterprise Edition, NXLog Enterprise Edition version 5.1. NXLog Enterprise Edition now supports passive network monitoring on Windows systems in addition to Linux and macOS, allowing greater visibility into what is happening on the network.