Security News

Elastic announces new updates across the Elastic Security solution in its 7.13 release to broaden support for osquery, the open source host instrumentation framework, with a new host management integration for Elastic Agent and unified analysis of osquery host data. The osquery host management integration, now in beta, enables security teams to use osquery results to address cyber threats without the complexity or cost of a separate management layer.

Aqua Security announced that its Team Nautilus researchers were tapped by the MITRE ATT&CK team to contribute to the development of the new Container Framework. Aqua's contributions help to create a foundation for cloud security methodologies and shape the future of container security by illuminating key cloud native security attack vectors and methods observed in the wild by Aqua's threat research team.

Hewlett Packard Enterprise announced solutions to help organizations advance data monetization by tapping into Gaia-X, an emerging federated data infrastructure supported by more than 300 organizations in Europe and globally. The HPE Solution Framework for Gaia-X was designed for companies, service providers and public organizations that want to get ready to participate in Gaia-X. It supports virtually all capabilities that are required to both provide and consume data and services in a decentralized, federated environment.

The European Council this week announced its decision to extend for one year the framework for sanctions against cyberattacks that threaten the European Union and its member states. Established in 2017, the framework allows member states to take restrictive measures against cyberattacks, including to prevent, discourage, deter and respond to malicious activities.

CyberGRX announced that its Framework Mapper capability is now available to third parties. With the ability to map CyberGRX's assessment back to industry frameworks, third parties will be able to translate the CyberGRX assessment to other standards, allowing them to share assessments quicker and engage with more customers than ever before.

NET Framework versions signed using the legacy and insecure Secure Hash Algorithm 1 will reach end of support next year. NET Framework 4.5.2, 4.6, and 4.6.1 will reach end of support on April 26, 2022," said Jamshed Damkewala,.

NVIDIA this week unveiled Morpheus, a cloud-native application framework designed to help cybersecurity providers analyze more data without sacrificing performance. According to NVIDIA, Morpheus leverages machine learning to identify anomalies and threats - such as phishing, data leaks and malware - through real-time inspection of all IP traffic in an organization's data centers.

Perform advanced threat hunting using logs from THF Huntpoint, email channel, traffic and behavior markers of each analyzed file from any source. THF Huntbox enables incident management, correlation of events and collaboration between analysts during threat hunting and IR activities.

Shujinko announced a major update to AuditX, the system of record for enterprise compliance data. "This update is a major step towards Shujinko's goal of helping enterprises achieve better cloud security by creating a system of record for all compliance data," said Scott Schwan, Co-Founder and CEO at Shujinko.

TechRepublic's cheat sheet about the National Institute of Standards and Technology's Cybersecurity Framework is a quick introduction to this new government recommended best practice, as well as a "Living" guide that will be updated periodically to reflect changes to the NIST's documentation. Executive summaryWhat is the NIST Cybersecurity Framework? The NIST CSF is a set of optional standards, best practices, and recommendations for improving cybersecurity and risk management at the organizational level.