Security News

Elastic released its integrated security offering, Elastic Security 7.6.0, which builds on the strengths of Elastic Endpoint Security and Elastic SIEM to deliver unparalleled visibility and threat protection through a unified interface. With Elasticsearch at its core, Elastic Security reduces security investigations from days to minutes with near-real-time security monitoring and incident response capabilities.

Eliminate guesswork and get in-depth insights and practical recommendations for navigating the ever-changing cybercrime landscape. This data-laden, incident-rich report delivers insider information on the players, their motivations, tactics and targets so you can make informed security strategy decisions.

Building on a decade of significant investment in innovation, partnerships, acquisitions, customer research and open- source standards, Cisco is now offering customers the broadest, most integrated cloud-native security platform in the industry, Cisco SecureX. Cisco SecureX provides a comprehensive user experience across the breadth of Cisco's integrated security portfolio and customers' existing security infrastructure. Cisco SecureX unifies visibility, identifies unknown threats, and automates workflows to strengthen customers' security across network, endpoint, cloud, and applications.

The new AI/ML behavior analytics for guided proactive hunting of unknown threats, enriched with MITRE ATT&CK Framework tactics and techniques as well as risk scoring, pre-built playbooks and case management capabilities reduce detection and response times by 67%. Gurucul provides prebuilt threat libraries that include models, queries, data features and playbooks to support a wide-range of threat hunting uses cases like insider threat detection, data exfiltration, phishing, endpoint forensics, malicious processes, ransomware detection and network threat analytics, as well as cyberthreat, human centric and entity related threat scenarios. These prepacked libraries help analysts prioritize base activities and focus on the proactive investigation of new and unknown threat patterns using contextual data.

BlueVoyant, a global analytics-driven cybersecurity firm, announced the availability of its Managed Detection and Response Service for Microsoft Defender Advanced Threat Protection, a unified next-generation anti-virus and endpoint detection and response platform. "The addition of Microsoft Defender Advanced Threat Protection to BlueVoyant's 100% cloud-based technology portfolio furthers BlueVoyant's goal of bringing best-of-breed technologies and services to companies of all sizes," said Jim Rosenthal, CEO of BlueVoyant.

"We are seeing increasingly complex threat techniques being used across cloud applications, spanning from cloud phishing and malware delivery, to cloud command and control and ultimately cloud data exfiltration," said Ray Canzanese, Threat Research Director at Netskope. "Our research shows the sophistication and scale of the cloud enabled kill chain increasing, requiring security defenses that understand thousands of cloud apps to keep pace with attackers and block cloud threats. For these reasons, any enterprise using the cloud needs to modernize and extend their security architectures."

Cyware Labs, provider of advanced cyber fusion solutions, announced the release of version 2.0 of the company's product suite. To keep up with the increasing volume of sophisticated threats, security teams must be able to move faster and with more accuracy while achieving greater visibility into their environment and threat landscape.

ElectionShield utilizes BrandShield's technology to protect political campaigns and candidates from a growing range of online threats. BrandShield can provide political candidates with the tools to monitor, detect and takedown these threats, through an AI-Based technology and online threat hunters team.

Microsoft this week announced the general availability of Microsoft Threat Protection, its integrated security solution aimed at offering protection across users, email, applications, and endpoints. Microsoft Threat Protection leverages AI and automation to not only alert on discovered issues, but also allow responders to easily take action.

Baltimore, MD-based ZeroFOX has raised $74 million in a new funding round led by Intel Capital and including existing vendors NEA, Highland Capital Partners, Redline Capital Management, Hercules Capital and Core Capital. ZeroFOX delivers an AI-powered platform that protects users and brands from social media-sourced threats.