Security News

Cloudhouse has acquired UpGuard Core, from third-party risk and attack surface management platform UpGuard. UpGuard Core will now be known as Cloudhouse Guardian, joining Cloudhouse's Application Compatibility Packaging solution to offer customers the unique capability to find, manage and resolve infrastructure and application compatibility, configuration and compliance issues.

According to researchers at Armis, a whopping 97 percent of the OT devices impacted by URGENT/11 have not been patched, despite fixes being delivered in 2019. "URGENT/11 could allow attackers to remotely exploit and take over mission critical devices, bypassing traditional perimeter and device security. Every business with these devices needs to ensure they are protected," said Yevgeny Dibrov, CEO and co-founder of Armis, when the bugs were discovered.

Xsight Labs announced a bold vision to rearchitect the foundation of cloud infrastructure by delivering a broad portfolio of products that enable end-to-end connectivity. Xsight Labs is developing a portfolio of products that will drive the seamless adoption of these innovative technologies.

Authentic8 announced a partnership with Google Cloud to expand availability of Silo across Google Cloud's infrastructure with 1-click procurement. Authentic8 is now a Google Cloud Technology Partner providing security, and Authentic8 gains access to Google Cloud's ability to run compliant web-based workflows at the highest levels of civilian classification.

By bringing MobileIron and Pulse Secure into the Ivanti portfolio, it will expand its capabilities to include even more devices, embed greater security protocols across infrastructures, and allow organizations to proactively and autonomously self-heal, self-secure, and self-service devices. This business combination further solidifies Ivanti as a global market leader in UEM, Zero Trust Security, and IT Service Management, and positions it to deliver intelligent and secure experiences across remote infrastructure, devices, and people in what is called the "Everywhere enterprise."

ScaleMP announced the general availability of its patented vSMP Foundation Version 10.0 line of products, after months of technology preview use at select customers and partners. Support for Azure Cloud and Oracle Cloud is expected by year end.

From now on, Citadelo will actively grow its footprint in Switzerland and across Europe to help enterprises secure their technology infrastructure in the current threat landscape. Artmotion was looking to boost its cloud security offering by adding white-hat hacking and was drawn to the team of 30 young ethical hackers at Citadelo.

Two security vulnerabilities in Schneider Electric's programmable logic controllers could allow attackers to compromise a PLC and move on to more sophisticated critical infrastructure attacks. There are two types of application protection available: Read protection protects the controller's application from being read by any unauthorized personnel at the engineering workstation; and the write protection protects the controller's application from unauthorized changes.

Ermetic announced a platform that provides full stack visibility and control over multi-cloud infrastructure entitlements. To help security and cloud operations teams reduce their attack surface, Ermetic combines a holistic view of both network access and IAM policy entitlements to comprehensively assess risks.

Confluera announced Confluera 2.0 which includes new features and capabilities that will address evolving customer needs as they battle cyberattack amid the current volatile security environment. Confluera XDR delivers a purpose-built cloud workload detection and response solution with the unique ability to deterministically track threats progressing through the environment.