MSSP Alerts delivers news, analysis, and chats from across the MSSP, MSP, and cybersecurity worlds, delivered quickly every business day.
Until it arrives in your inbox:
Send news, tips and rumors to Editor-in-Chief Jim Masters. [email protected]
Today’s MSSP Alert Market News:
1. GenAI Security Partnership: Blue Mantis, a provider of managed services, cybersecurity, and cloud solutions, has entered into a strategic partnership with AI Technology Partners (AITP), a specialist in innovative AI strategies and Microsoft Copilot implementations. The partnership combines Blue Mantis’ managed IT and cybersecurity services expertise with AITP’s consulting, data, analytics, and AI capabilities. Blue Mantis and AITP have jointly developed a go-to-market strategy and service offering for midsize business customers, the companies said.
2. Threat intelligence collaboration: Continuous threat exposure management provider Reveald has expanded its capabilities by acquiring rThreat and creating the Epiphany Validation Engine (EVE), which powers AI-driven cyber resiliency. EVE is an emulation technology that allows security operators to assume the role of an attacker and validate cybersecurity preparedness and controls, while also allowing analysts to see the entire attack vector and identify critical risks. said the company.
3. Debut of Cyber Risk Solution: Bitsight, a cyber risk management specialist, brings AI-powered technology to market to enable continuous updates on connected assets, third parties and relationships, and overall risk posture. view to businesses. The new Discovery and Attribution Engine creates a dynamic map of an organization’s internet-connected assets to more quickly identify exposure, assess risk, and prioritize remediation across an expanded attack surface. The company said it can be done easily.
4. Cybersecurity Buyer Intelligence Report Published by CRA: CyberRisk Alliance’s latest Cybersecurity Buyer Intelligence Report, “Incident Response: Incident Response Team Burnout and Resource Constraints Give Attackers an Advantage,” finds that teams’ We offer innovative solutions to the widespread challenge of burnout. “These findings drive home the growing problem of burnout among incident responders,” said Bill Brenner, senior vice president of audience content strategy at Cyber Risk Alliance (CRA). “They need more resources, but they may not have them right away. The answer we sought to answer was to help organizations provide a robust incident response while simultaneously reducing pressure. What can we do to find a way to do that?”
5. Security Partnership: Accenture and Mandiant, part of Google Cloud, are partnering to jointly deliver cyber resilience services to help organizations more efficiently detect, investigate, respond to, and recover from cyberattacks. Accenture will leverage Mandiant’s threat intelligence and expertise for cyber resilience services. Additionally, Accenture Federal Services supports U.S. Naval Sea Forces worldwide by conducting integrated cybersecurity operations across the SHARKCAGE environment, a shared Navy system built to protect a single, common, and continuous security was awarded a 10-year, $789 million contract to support the outer circumference.
6. CISA issues recommendations: The Cybersecurity and Infrastructure Security Agency (CISA) has released four recommendations regarding industrial control systems (ICS). These advisories provide timely information about current security issues, vulnerabilities, and exploits for ICS.
CISA recommends that users and administrators review newly released ICS advisories for technical details and mitigations.
7. Leadership moves: CyXcel, a cybersecurity company with operations in the UK and North America, has appointed Simon Church as chief strategy officer. Church has held executive positions at cybersecurity and technology companies including Maxive Cyber Security (acquired by Thales), Optiv, Vodafone, NTT Security, Verisign, and NetIQ. His experience includes identity management, networking, and strategic roles in managed services.
8. Spam warning: AT&T’s email servers are blocking connections from Microsoft 365 due to a “heavy” wave of spam originating from Microsoft’s services. AT&T customers began reporting this week that they were no longer receiving emails from their Microsoft 365 email addresses. When Microsoft 365 customers tried to send email to @att.com, @sbcglobal.net, or @bellsouth.com addresses, AT&T servers refused the connection and did not accept the email for delivery. (Source: Bleeping Computer)
9. Warning to hackers: The Sysdig Threat Research team observed a new attack known as LLM Jacking that uses stolen cloud credentials to target 10 large language model (LLM) services hosted in the cloud. did. The credentials were obtained from a system running a vulnerable version of Laravel (CVE-2021-3129), which is a common target. In this case, the attacker aims to sell LLM access to other cybercriminals while the cloud account holder pays a fee.
10. Threat Reports Published: VIPRE Security Group, a cybersecurity, privacy, and data protection company, has released its Q1 2024 Email Threat Trends Report, based on an analysis of 1.8 billion emails. The findings shed light on the evolving landscape of email-based threats and new tactics employed by malicious actors. Manufacturing, government, and IT sectors are among the most affected by malicious actors. In Q1 2024, manufacturing suffered 43% of email-based attacks, with government (15%) and IT (11%) far behind. This is a change from the first quarter of 2023, when attackers most frequently targeted the finance (25%), healthcare (22%) and education (15%) sectors, the report said. There is.